VULHUB ™

Red Hat Linux includes a collection of tools for working with the DocBook format, an XML specification for book content. An issue has been reported in the default stylesheet included with these tools. When a DocBook files is converted to multiple HTML files, elements from the original file are used to define filenames. A maliciously constructed DocBook file may specify full paths. When the file is converted, arbitrary files will be overwritten.

Red Hat Linux includes a collection of tools for working with the DocBook format, an XML specification for book content. An issue has been reported in the default stylesheet included with these tools. When a DocBook files is converted to multiple HTML files, elements from the original file are used to define filenames. A maliciously constructed DocBook file may specify full paths. When the file is converted, arbitrary files will be overwritten.