CVE-2025-11731

Published: October 15, 2025Last modified: October 15, 2025

Description

A flaw was found in the exsltFuncResultComp() function of libxslt, which handles EXSLT <func:result> elements during stylesheet parsing. Due to improper type handling, the function may treat an XML document node as a regular XML element node, resulting in a type confusion. This can cause unexpected memory reads and potential crashes. While difficult to exploit, the flaw could lead to application instability or denial of service.

Severity score breakdown

Parameter	Value
Base score	3.1
Attack Vector	NETWORK
Attack complexity	HIGH
Privileges required	NONE
User interaction	REQUIRED
Scope	UNCHANGED
Confidentiality	NONE
Integrity impact	NONE
Availability impact	LOW
Vector	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L

Status

Product	Release	Package	Status
Alpaquita Linux	23 LTS	libxslt	Fixed (1.1.37-r3)
	25 LTS	libxslt	Fixed (1.1.43-r1)
	Stream	libxslt	Fixed (1.1.43-r1)

References

https://access.redhat.com/errata/RHSA-2026:11015
https://access.redhat.com/security/cve/CVE-2025-11731
https://bugzilla.redhat.com/show_bug.cgi?id=2403688
https://gitlab.gnome.org/GNOME/libxslt/-/issues/151
https://gitlab.gnome.org/GNOME/libxslt/-/merge_requests/78