Описание
ELSA-2025-13203: libxml2 security update (MODERATE)
[2.9.7.21.3]
- Fix CVE-2025-32415 (RHEL-100177)
[2.9.7.21.2]
- Fix CVE-2025-7425 (RHEL-102797)
[2.9.7-21.1]
- Fix CVE-2025-6021 (RHEL-96498)
- Fix CVE-2025-49794 (RHEL-96398)
- Fix CVE-2025-49796 (RHEL-96424)
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
libxml2
2.9.7-21.el8_10.3
libxml2-devel
2.9.7-21.el8_10.3
python3-libxml2
2.9.7-21.el8_10.3
Oracle Linux x86_64
libxml2
2.9.7-21.el8_10.3
libxml2-devel
2.9.7-21.el8_10.3
python3-libxml2
2.9.7-21.el8_10.3
Связанные CVE
Связанные уязвимости
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNod ...