Описание
ELSA-2020-1190: libxml2 security update (MODERATE)
[2.9.1-6.0.1.4]
- Update doc/redhat.gif in tarball
- Add libxml2-oracle-enterprise.patch and update logos in tarball
[2.9.1-6.4]
- Fix CVE-2015-8035 (#1595697)
- Fix CVE-2018-14404 (#1602817)
- Fix CVE-2017-15412 (#1729857)
- Fix CVE-2016-5131 (#1714050)
- Fix CVE-2017-18258 (#1579211)
- Fix CVE-2018-1456 (#1622715)
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
libxml2
2.9.1-6.0.1.el7.4
libxml2-devel
2.9.1-6.0.1.el7.4
libxml2-python
2.9.1-6.0.1.el7.4
libxml2-static
2.9.1-6.0.1.el7.4
Oracle Linux x86_64
libxml2
2.9.1-6.0.1.el7.4
libxml2-devel
2.9.1-6.0.1.el7.4
libxml2-python
2.9.1-6.0.1.el7.4
libxml2-static
2.9.1-6.0.1.el7.4
Ссылки на источники
Связанные уязвимости
The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.
The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.
The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.
The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly d ...
The xz_decomp function in xzlib.c in libxml2 2.9.1 does not properly detect compression errors, which allows context-dependent attackers to cause a denial of service (process hang) via crafted XML data.