CVE-2023-40403

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may disclose sensitive information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
Affected Products (NVD)
VendorProductVersion
appleipados
𝑥
< 16.7
appleiphone_os
𝑥
< 16.7
applemacos
12.0.0 ≤
𝑥
< 12.7
applemacos
13.0 ≤
𝑥
< 13.6
appletvos
𝑥
< 17.0
applewatchos
𝑥
< 10.0
𝑥
= Vulnerable software versions
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libxslt-devel
suse enterprise desktop 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise desktop 15 SP7
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP4
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP5
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP7
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP2
1.1.32-150000.3.17.1
fixed
suse enterprise server 15 SP3
1.1.32-150000.3.17.1
fixed
suse enterprise server 15 SP4
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP5
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP7
1.1.34-150400.3.6.1
fixed
libxslt-tools
suse enterprise desktop 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise desktop 15 SP7
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP4
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP5
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP7
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP2
1.1.32-150000.3.17.1
fixed
suse enterprise server 15 SP3
1.1.32-150000.3.17.1
fixed
suse enterprise server 15 SP4
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP5
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP7
1.1.34-150400.3.6.1
fixed
libxslt1
suse enterprise desktop 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise desktop 15 SP7
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP4
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP5
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise sap 15 SP7
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP2
1.1.32-150000.3.17.1
fixed
suse enterprise server 15 SP3
1.1.32-150000.3.17.1
fixed
suse enterprise server 15 SP4
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP5
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP6
1.1.34-150400.3.6.1
fixed
suse enterprise server 15 SP7
1.1.34-150400.3.6.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
libxslt
RHEL 8
0:1.1.32-6.2.el8_10
fixed
RHEL 9
0:1.1.34-14.el9_7.1
fixed
libxslt-devel
RHEL 8
0:1.1.32-6.2.el8_10
fixed
RHEL 9
0:1.1.34-14.el9_7.1
fixed
References
http://seclists.org/fulldisclosure/2023/Oct/10
http://seclists.org/fulldisclosure/2023/Oct/3
http://seclists.org/fulldisclosure/2023/Oct/4
http://seclists.org/fulldisclosure/2023/Oct/5
http://seclists.org/fulldisclosure/2023/Oct/6
http://seclists.org/fulldisclosure/2023/Oct/8
http://seclists.org/fulldisclosure/2023/Oct/9
https://support.apple.com/en-us/HT213927
https://support.apple.com/en-us/HT213931
https://support.apple.com/en-us/HT213932
https://support.apple.com/en-us/HT213936
https://support.apple.com/en-us/HT213937
https://support.apple.com/en-us/HT213938
https://support.apple.com/en-us/HT213940
http://seclists.org/fulldisclosure/2023/Oct/10
http://seclists.org/fulldisclosure/2023/Oct/3
http://seclists.org/fulldisclosure/2023/Oct/4
http://seclists.org/fulldisclosure/2023/Oct/5
http://seclists.org/fulldisclosure/2023/Oct/6
http://seclists.org/fulldisclosure/2023/Oct/8
http://seclists.org/fulldisclosure/2023/Oct/9
https://lists.debian.org/debian-lts-announce/2025/09/msg00024.html
https://support.apple.com/en-us/HT213927
https://support.apple.com/en-us/HT213931
https://support.apple.com/en-us/HT213932
https://support.apple.com/en-us/HT213936
https://support.apple.com/en-us/HT213937
https://support.apple.com/en-us/HT213938
https://support.apple.com/en-us/HT213940
https://support.apple.com/kb/HT213931
https://support.apple.com/kb/HT213932
https://support.apple.com/kb/HT213936
https://support.apple.com/kb/HT213937
https://support.apple.com/kb/HT213938
https://support.apple.com/kb/HT213940