ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

Release Info

Advisory: CLSA-2025:1757413554

OS: RHEL 7 ELS

Public date: 2025-09-09 10:25:56.585726

Project: libxml2

Version: 2.9.1-6.0.3.el7_9.6.tuxcare.els7

Errata link: https://errata.tuxcare.com/els_os/rhel7els/CLSA-2025-1757413554.html

Changelog

- CVE-2025-7425: fix heap-use-after-free in xmlFreeID caused by 'atype' corruption - CVE-2025-6021: fix integer overflows in buffer size calculations

Update

Update command: yum update libxml2*

Packages list

libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els7.i686.rpm libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els7.x86_64.rpm libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els7.i686.rpm libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els7.x86_64.rpm libxml2-python-2.9.1-6.0.3.el7_9.6.tuxcare.els7.x86_64.rpm libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els7.i686.rpm libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els7.x86_64.rpm

CVEs

CVE-2025-6021

CVE-2025-7425