Описание
ELSA-2021-3810: libxml2 security update (MODERATE)
[2.9.1-6.0.3]
- Rebuild to include attribution logo [Orabug: 33024216]
- Update doc/redhat.gif in tarball
- Add libxml2-oracle-enterprise.patch and update logos in tarball
[2.9.1-6.6]
- Fix CVE-2016-4658 (#1966916)
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
libxml2
2.9.1-6.0.3.el7_9.6
libxml2-devel
2.9.1-6.0.3.el7_9.6
libxml2-python
2.9.1-6.0.3.el7_9.6
libxml2-static
2.9.1-6.0.3.el7_9.6
Oracle Linux x86_64
libxml2
2.9.1-6.0.3.el7_9.6
libxml2-devel
2.9.1-6.0.3.el7_9.6
libxml2-python
2.9.1-6.0.3.el7_9.6
libxml2-static
2.9.1-6.0.3.el7_9.6
Связанные CVE
Связанные уязвимости
xpointer.c in libxml2 before 2.9.5 (as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products) does not forbid namespace nodes in XPointer ranges, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and memory corruption) via a crafted XML document.
xpointer.c in libxml2 before 2.9.5 (as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products) does not forbid namespace nodes in XPointer ranges, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and memory corruption) via a crafted XML document.
xpointer.c in libxml2 before 2.9.5 (as used in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3, and other products) does not forbid namespace nodes in XPointer ranges, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and memory corruption) via a crafted XML document.
xpointer.c in libxml2 before 2.9.5 (as used in Apple iOS before 10, OS ...
