Debian Linux Security Advisory 2219-1 - Nicolas Gregoire discovered that the XML Security Library xmlsec allowed remote attackers to create or overwrite arbitrary files through specially crafted XML files using the libxslt output extension and a ds:Transform element during signature verification.
8596d7fee486d5be0cd92951972238ede30863f97d4377e447181a95a8d59845
Mandriva Linux Security Advisory 2011-063 - xslt.c in XML Security Library before 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote attackers to create or overwrite arbitrary files via vectors involving the libxslt output extension and a ds:Transform element during signature verification.
03676e8800dd4f2484e21c820bde4c6bd3aa8089ea8f4d526c12470af6ef5eac