CVE-2025-10911: Expired Pointer Dereference
A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.
AI Analysis
Technical Summary
This vulnerability involves a use-after-free condition in the libxslt library during the parsing of XSL nodes, which may lead to dereferencing expired pointers and result in application crashes. It is identified as CVE-2025-10911 and affects Red Hat Enterprise Linux 10. The CVSS 3.1 base score is 5.5, indicating a medium severity with local attack vector, low attack complexity, no privileges required, user interaction needed, unchanged scope, and no confidentiality or integrity impact but high impact on availability. Red Hat has published security advisories and released updated libxslt RPM packages to fix this issue.
Potential Impact
The vulnerability can cause application crashes due to dereferencing expired pointers (use-after-free), impacting system availability. There is no impact on confidentiality or integrity. No known exploits are reported in the wild at this time.
Mitigation Recommendations
Red Hat has released updated libxslt RPM packages (libxslt-1.1.45-0.1.hum1) for affected architectures. Applying these official updates will remediate the vulnerability. Users should follow Red Hat's update instructions available in the advisories at https://access.redhat.com/errata/RHSA-2026:11015 and https://access.redhat.com/security/cve/CVE-2025-10911. Patch status is confirmed as available.
CVE-2025-10911: Expired Pointer Dereference
Description
A use-after-free vulnerability was found in libxslt while parsing xsl nodes that may lead to the dereference of expired pointers and application crash.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability involves a use-after-free condition in the libxslt library during the parsing of XSL nodes, which may lead to dereferencing expired pointers and result in application crashes. It is identified as CVE-2025-10911 and affects Red Hat Enterprise Linux 10. The CVSS 3.1 base score is 5.5, indicating a medium severity with local attack vector, low attack complexity, no privileges required, user interaction needed, unchanged scope, and no confidentiality or integrity impact but high impact on availability. Red Hat has published security advisories and released updated libxslt RPM packages to fix this issue.
Potential Impact
The vulnerability can cause application crashes due to dereferencing expired pointers (use-after-free), impacting system availability. There is no impact on confidentiality or integrity. No known exploits are reported in the wild at this time.
Mitigation Recommendations
Red Hat has released updated libxslt RPM packages (libxslt-1.1.45-0.1.hum1) for affected architectures. Applying these official updates will remediate the vulnerability. Users should follow Red Hat's update instructions available in the advisories at https://access.redhat.com/errata/RHSA-2026:11015 and https://access.redhat.com/security/cve/CVE-2025-10911. Patch status is confirmed as available.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- redhat
- Date Reserved
- 2025-09-24T12:45:24.913Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Vendor Advisory Urls
- [{"url":"https://access.redhat.com/errata/RHSA-2026:11015","vendor":"Red Hat"},{"url":"https://access.redhat.com/security/cve/CVE-2025-10911","vendor":"Red Hat"}]
Threat ID: 68d59bc858afd90a7d662e29
Added to database: 9/25/2025, 7:45:12 PM
Last enriched: 5/5/2026, 2:26:46 AM
Last updated: 5/10/2026, 6:38:01 AM
Views: 209
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.