Описание
ELSA-2015-1419: libxml2 security and bug fix update (LOW)
[2.7.6-20.0.1.el6]
- Update doc/redhat.gif in tarball
- Add libxml2-oracle-enterprise.patch and update logos in tarball
[libxml2-2.7.6-20.el6]
- CVE-2015-1819 Enforce the reader to run in constant memory(rhbz#1214163)
[libxml2-2.7.6-19.el6]
- Stop parsing on entities boundaries errors
- Fix missing entities after CVE-2014-3660 fix (rhbz#1149086)
[libxml2-2.7.6-18.el6]
- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149086)
- Fix html serialization error and htmlSetMetaEncoding (rhbz#1004513)
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
libxml2
2.7.6-20.0.1.el6
libxml2-devel
2.7.6-20.0.1.el6
libxml2-python
2.7.6-20.0.1.el6
libxml2-static
2.7.6-20.0.1.el6
Oracle Linux i686
libxml2
2.7.6-20.0.1.el6
libxml2-devel
2.7.6-20.0.1.el6
libxml2-python
2.7.6-20.0.1.el6
libxml2-static
2.7.6-20.0.1.el6
Связанные CVE
Связанные уязвимости
The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.
The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.
The xmlreader in libxml allows remote attackers to cause a denial of service (memory consumption) via crafted XML data, related to an XML Entity Expansion (XEE) attack.
The xmlreader in libxml allows remote attackers to cause a denial of s ...
