This repository has been archived by the owner on Mar 16, 2022. It is now read-only.

1.281.0

cf-buildpacks-eng released this 16 Apr 19:50

· 5 commits to master since this release

e017fd1

Notably, this release addresses:

USN-3947-1 USN-3947-1: Libxslt vulnerability:

CVE-2019-11068: libxslt through 1.1.33 allows bypass of a protection mechanism becausecallers of xsltCheckRead and xsltCheckWrite permit access even uponreceiving a -1 error code. xsltCheckRead can return -1 for a crafted URLthat is not actually invalid and is subsequently loaded.

Assets 3