Advisory: CLSA-2025:1760020147
OS: Ubuntu 16.04 ELS
Public date: 2025-10-09 14:29:14.67482
Project: libxml2
Version: 2.9.3+dfsg1-1ubuntu0.7+tuxcare.els13
Errata link: https://errata.tuxcare.com/els_os/ubuntu16.04els/CLSA-2025-1760020147.html
* SECURITY UPDATE: uncontrolled recursion causing stack overflow via crafted XPath expressions - debian/patches/CVE-2025-9714-*.patch: Add comprehensive XPath DoS protection including operation limits, recursion depth controls, and proper handling of recursive invocations to prevent stack overflows and resource exhaustion - CVE-2025-9714
Update command: apt-get update apt-get --only-upgrade install libxml2*
libxml2_2.9.3+dfsg1-1ubuntu0.7+tuxcare.els13_amd64.deb libxml2-dev_2.9.3+dfsg1-1ubuntu0.7+tuxcare.els13_amd64.deb libxml2-doc_2.9.3+dfsg1-1ubuntu0.7+tuxcare.els13_all.deb libxml2-utils_2.9.3+dfsg1-1ubuntu0.7+tuxcare.els13_amd64.deb python-libxml2_2.9.3+dfsg1-1ubuntu0.7+tuxcare.els13_amd64.deb