ELSA-2026-28243

ELSA-2026-28243 - libxslt security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-06-23

Description

[1.1.34-14.0.1.el9_8.1]
- Fix memory leak in exclPrefixPush [Orabug: 37871881]
- Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball

[1.1.34-14.1]
- Fix CVE-2025-10911 (RHEL-171991)

[1.1.34-14.1]
- Fix upgrade path for CVE-2023-40403 (RHEL-82213)

[1.1.34-12.1]
- Fix CVE-2023-40403 (RHEL-82213)

[1.1.34-12]
- Include alloc changes into previous patch (RHEL-83514)

[1.1.34-11]
- Fix CVE-2024-55549 (RHEL-83514)

[1.1.34-10]
- Fix CVE-2025-24855 (RHEL-83500)

Related CVEs

CVE-2025-10911

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 9 (aarch64)	libxslt-1.1.34-14.0.1.el9_8.1.src.rpm	3ff7074b244f2fe35eac3ad94700db379c8c3c67196c4dfa86e25548bec74d61	-	ol9_aarch64_appstream
	libxslt-1.1.34-14.0.1.el9_8.1.aarch64.rpm	95ded97cd3ba18fa8203ac33951d4780309ee0213f88a886f012feb2a7ddf2e9	-	ol9_aarch64_appstream
	libxslt-devel-1.1.34-14.0.1.el9_8.1.aarch64.rpm	1f7f764853971c074ce262136ad95736bc5ebb379b4794f49e19e638f351801c	-	ol9_aarch64_appstream
Oracle Linux 9 (x86_64)	libxslt-1.1.34-14.0.1.el9_8.1.src.rpm	3ff7074b244f2fe35eac3ad94700db379c8c3c67196c4dfa86e25548bec74d61	-	ol9_x86_64_appstream
	libxslt-1.1.34-14.0.1.el9_8.1.i686.rpm	6f935589096054e180536fbf63245524e732f1e9946704e3990547a80036be15	-	ol9_x86_64_appstream
	libxslt-1.1.34-14.0.1.el9_8.1.x86_64.rpm	cdfb611f72b8c70fdc02a8fea22a7e3309a11d058cddc8c8351443b1e2d35030	-	ol9_x86_64_appstream
	libxslt-devel-1.1.34-14.0.1.el9_8.1.i686.rpm	ef03b7b7eb50408e001f96eaceb4128f44b59f2b65c9a119a1348e58d83fb93a	-	ol9_x86_64_appstream
	libxslt-devel-1.1.34-14.0.1.el9_8.1.x86_64.rpm	a0f79851784174c29017a1f484bdd5de54933ed9359fb9dfa408d3f233bca69f	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team