Re: libxslt: some CVEs not fixed in debian buster

Akira Shibakawa writes: > CVE-2019-5815 and CVE-2021-30560 are vulnerabilities of libxslt > included in chromium source code as third-party code. > And not only chromium but also libxslt upstream has already fixed them. > https://gitlab.gnome.org/GNOME/libxslt/-/commit/08b62c258 > https://gitlab.

libxslt: some CVEs not fixed in debian buster

Hi, CVE-2019-5815 and CVE-2021-30560 are vulnerabilities of libxslt included in chromium source code as third-party code. And not only chromium but also libxslt upstream has already fixed them. https://gitlab.gnome.org/GNOME/libxslt/-/commit/08b62c258 https://gitlab.gnome.org/GNOME/libxslt/-/commit