Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:10698

Опубликовано: 29 июл. 2025
Источник: rocky
Оценка: Important

Описание

Important: libxml2 security update

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

  • libxml: Heap use after free (UAF) leads to Denial of service (DoS) (CVE-2025-49794)

  • libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)

  • libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2 (CVE-2025-6021)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
libxml2x86_6421.el8_10.1libxml2-2.9.7-21.el8_10.1.x86_64.rpm
python3-libxml2x86_6421.el8_10.1python3-libxml2-2.9.7-21.el8_10.1.x86_64.rpm

Показывать по

Связанные уязвимости

oracle-oval
28 дней назад

ELSA-2025-10699: libxml2 security update (IMPORTANT)

oracle-oval
28 дней назад

ELSA-2025-10698: libxml2 security update (IMPORTANT)

suse-cvrf
19 дней назад

Security update for libxml2

suse-cvrf
25 дней назад

Security update for libxml2

suse-cvrf
26 дней назад

Security update for libxml2