ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

Release Info

Advisory: CLSA-2022:1670523520

OS: CentOS 8.5 ELS

Public date: 2022-12-08 00:00:00

Project: libxml2

Version: 2.9.7-9.el8_4.2.tuxcare.els4

Errata link: https://errata.tuxcare.com/els_os/centos8.5els/CLSA-2022-1670523520.html

Changelog

- CVE-2022-40303: fix integer overflows with XML_PARSE_HUGE - CVE-2022-40304: fix dict corruption caused by entity reference cycles

Update

Update command: dnf update libxml2*

Packages list

libxml2-2.9.7-9.el8_4.2.tuxcare.els4.i686.rpm libxml2-2.9.7-9.el8_4.2.tuxcare.els4.x86_64.rpm libxml2-devel-2.9.7-9.el8_4.2.tuxcare.els4.i686.rpm libxml2-devel-2.9.7-9.el8_4.2.tuxcare.els4.x86_64.rpm libxml2-static-2.9.7-9.el8_4.2.tuxcare.els4.x86_64.rpm python3-libxml2-2.9.7-9.el8_4.2.tuxcare.els4.x86_64.rpm

CVEs

CVE-2022-40304

CVE-2022-40303