Advisory: CLSA-2025:1760020498
OS: Ubuntu 18.04 ELS
Public date: 2025-10-09 14:35:00.044468
Project: libxml2
Version: 2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els7
Errata link: https://errata.tuxcare.com/els_os/ubuntu18.04els/CLSA-2025-1760020498.html
* SECURITY UPDATE: uncontrolled recursion causing stack overflow via crafted XPath expressions - debian/patches/CVE-2025-9714-*.patch: Add comprehensive XPath DoS protection including operation limits, recursion depth controls, and proper handling of recursive invocations to prevent stack overflows and resource exhaustion - CVE-2025-9714
Update command: apt-get update apt-get --only-upgrade install libxml2*
libxml2_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els7_amd64.deb libxml2-dev_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els7_amd64.deb libxml2-doc_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els7_all.deb libxml2-utils_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els7_amd64.deb python-libxml2_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els7_amd64.deb python3-libxml2_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els7_amd64.deb