Описание
Security update for libxml2
This update for libxml2 fixes the following issues:
- CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes (bsc#1196490).
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
libxml2-2.7.6-0.77.43.1
libxml2-doc-2.7.6-0.77.43.1
libxml2-python-2.7.6-0.77.43.1
SUSE Linux Enterprise Server 11 SP4-LTSS
libxml2-2.7.6-0.77.43.1
libxml2-32bit-2.7.6-0.77.43.1
libxml2-doc-2.7.6-0.77.43.1
libxml2-python-2.7.6-0.77.43.1
Ссылки
- Link for SUSE-SU-2022:14904-1
- E-Mail link for SUSE-SU-2022:14904-1
- SUSE Security Ratings
- SUSE Bug 1196490
- SUSE CVE CVE-2022-23308 page
Описание
valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.
Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:libxml2-2.7.6-0.77.43.1
SUSE Linux Enterprise Point of Sale 11 SP3:libxml2-doc-2.7.6-0.77.43.1
SUSE Linux Enterprise Point of Sale 11 SP3:libxml2-python-2.7.6-0.77.43.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libxml2-2.7.6-0.77.43.1
Ссылки
- CVE-2022-23308
- SUSE Bug 1196490
- SUSE Bug 1199098
- SUSE Bug 1202688