ELSA-2021-1597

Опубликовано: 25 мая 2021

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2021-1597: libxml2 security update (MODERATE)

[2.9.7-9.0.1]

Update doc/redhat.gif in tarball
Add libxml2-oracle-enterprise.patch and update logos in tarball

[2.9.7-9]

Fix CVE-2020-24977 (#1878252)

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

libxml2

2.9.7-9.0.1.el8

libxml2-devel

2.9.7-9.0.1.el8

python3-libxml2

2.9.7-9.0.1.el8

Oracle Linux x86_64

libxml2

2.9.7-9.0.1.el8

libxml2-devel

2.9.7-9.0.1.el8

python3-libxml2

2.9.7-9.0.1.el8

Связанные CVE

CVE-2020-24977

Ссылки на источники

Связанные уязвимости

CVE-2020-24977

CVSS3: 6.5

ubuntu

больше 5 лет назад

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.

CVE-2020-24977

CVSS3: 6.5

redhat

больше 5 лет назад

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.

CVE-2020-24977

CVSS3: 6.5

nvd

больше 5 лет назад

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.

CVE-2020-24977

CVSS3: 6.5

msrc

больше 5 лет назад

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.

CVE-2020-24977

CVSS3: 6.5

debian

больше 5 лет назад

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerabil ...