ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

Release Info

Advisory: CLSA-2025:1757522880

OS: Ubuntu 20.04 ELS

Public date: 2025-09-10 16:48:02.359253

Project: libxml2

Version: 2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els3

Errata link: https://errata.tuxcare.com/els_os/ubuntu20.04els/CLSA-2025-1757522880.html

Changelog

* SECURITY UPDATE: stack-based buffer overflow vulnerability in xmlBuildQName function - debian/patches/CVE-2025-6021.patch: fix integer overflow in xmlBuildQName causing memory safety issue - CVE-2025-6021

Update

Update command: apt-get update apt-get --only-upgrade install libxml2*

Packages list

libxml2_2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els3_amd64.deb libxml2-dev_2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els3_amd64.deb libxml2-doc_2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els3_all.deb libxml2-utils_2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els3_amd64.deb python-libxml2_2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els3_amd64.deb python3-libxml2_2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els3_amd64.deb

CVEs

CVE-2025-6021