Описание
Security update for libxml2
This update for libxml2 fixes the following issues:
- CVE-2024-25062: Fixed use-after-free in XMLReader (bsc#1219576).
Список пакетов
Container suse/ltss/sle15.3/bci-base:latest
libxml2-2-2.9.7-150000.3.66.1
Container suse/sle-micro-rancher/5.2:latest
libxml2-2-2.9.7-150000.3.66.1
Container suse/sle-micro/5.1/toolbox:latest
libxml2-2-2.9.7-150000.3.66.1
Container suse/sle-micro/5.2/toolbox:latest
libxml2-2-2.9.7-150000.3.66.1
Container suse/sle15:15.1
libxml2-2-2.9.7-150000.3.66.1
Container suse/sle15:15.2
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP3-BYOS-Azure
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-BYOS-EC2-HVM
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-BYOS-GCE
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-CHOST-BYOS-Aliyun
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-CHOST-BYOS-Azure
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-CHOST-BYOS-EC2
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-CHOST-BYOS-GCE
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-HPC-BYOS-Azure
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-HPC-BYOS-GCE
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-Micro-5-1-BYOS-Azure
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-Micro-5-1-BYOS-GCE
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-Micro-5-2-BYOS-Azure
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-Micro-5-2-BYOS-GCE
libxml2-2-2.9.7-150000.3.66.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP3-SAP-BYOS-Azure
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP3-SAP-BYOS-GCE
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP3-SAPCAL-Azure
libxml2-2-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP3-SAPCAL-EC2-HVM
libxml2-2-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
Image SLES15-SP3-SAPCAL-GCE
libxml2-2-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
SUSE Enterprise Storage 7.1
libxml2-2-2.9.7-150000.3.66.1
libxml2-2-32bit-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
python3-libxml2-python-2.9.7-150000.3.66.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
libxml2-2-2.9.7-150000.3.66.1
libxml2-2-32bit-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
python2-libxml2-python-2.9.7-150000.3.66.1
python3-libxml2-python-2.9.7-150000.3.66.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
libxml2-2-2.9.7-150000.3.66.1
libxml2-2-32bit-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
python3-libxml2-python-2.9.7-150000.3.66.1
SUSE Linux Enterprise Micro 5.1
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
SUSE Linux Enterprise Micro 5.2
libxml2-2-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
python3-libxml2-python-2.9.7-150000.3.66.1
SUSE Linux Enterprise Server 15 SP2-LTSS
libxml2-2-2.9.7-150000.3.66.1
libxml2-2-32bit-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
python2-libxml2-python-2.9.7-150000.3.66.1
python3-libxml2-python-2.9.7-150000.3.66.1
SUSE Linux Enterprise Server 15 SP3-LTSS
libxml2-2-2.9.7-150000.3.66.1
libxml2-2-32bit-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
python3-libxml2-python-2.9.7-150000.3.66.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
libxml2-2-2.9.7-150000.3.66.1
libxml2-2-32bit-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
python2-libxml2-python-2.9.7-150000.3.66.1
python3-libxml2-python-2.9.7-150000.3.66.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
libxml2-2-2.9.7-150000.3.66.1
libxml2-2-32bit-2.9.7-150000.3.66.1
libxml2-devel-2.9.7-150000.3.66.1
libxml2-tools-2.9.7-150000.3.66.1
python3-libxml2-python-2.9.7-150000.3.66.1
openSUSE Leap 15.5
python3-libxml2-python-2.9.7-150000.3.66.1
Ссылки
- Link for SUSE-SU-2024:0461-2
- E-Mail link for SUSE-SU-2024:0461-2
- SUSE Security Ratings
- SUSE Bug 1219576
- SUSE CVE CVE-2024-25062 page
Описание
An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.
Затронутые продукты
Container suse/ltss/sle15.3/bci-base:latest:libxml2-2-2.9.7-150000.3.66.1
Container suse/sle-micro-rancher/5.2:latest:libxml2-2-2.9.7-150000.3.66.1
Container suse/sle-micro/5.1/toolbox:latest:libxml2-2-2.9.7-150000.3.66.1
Container suse/sle-micro/5.2/toolbox:latest:libxml2-2-2.9.7-150000.3.66.1
Ссылки
- CVE-2024-25062
- SUSE Bug 1219575