CVE-2023-40403

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-40403
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-40403.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-40403
Related
Published
2023-09-27T15:19:08Z
Modified
2025-06-20T10:04:39.987382Z
Downstream
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may disclose sensitive information.

References

Affected packages

Debian:11 / libxslt

Package

Name
libxslt
Purl
pkg:deb/debian/libxslt?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.34-4
1.1.34-4+deb11u1
1.1.34-4+deb11u2
1.1.35-1
1.1.35-1.1
1.1.35-1.2
1.1.39-0exp1
1.1.43-0exp1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / libxslt

Package

Name
libxslt
Purl
pkg:deb/debian/libxslt?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.35-1
1.1.35-1+deb12u1
1.1.35-1.1
1.1.35-1.2
1.1.39-0exp1
1.1.43-0exp1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / libxslt

Package

Name
libxslt
Purl
pkg:deb/debian/libxslt?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.35-1
1.1.35-1.1
1.1.35-1.2
1.1.39-0exp1
1.1.43-0exp1

Ecosystem specific

{
    "urgency": "unimportant"
}