libxml2-2.9.7-7.el8

エラータID: AXSA:2020-301:02

Release date: 
Tuesday, September 8, 2020 - 06:16
Subject: 
libxml2-2.9.7-7.el8
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

* libxml2: NULL pointer dereference in xmlXPathCompOpEval() function in xpath.c (CVE-2018-14404)

* libxml2: infinite loop in xz_decomp function in xzlib.c (CVE-2018-9251)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Asianux Server 8.2 Release Notes linked from the References section.

CVE-2018-14404
A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerable to a denial of service attack due to a crash of the application.
CVE-2018-9251
The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035.

Solution: 

Update packages.

CVEs: 
CVE-2018-14404
A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case. Applications processing untrusted XSL format inputs with the use of the libxml2 library may be vulnerable to a denial of service attack due to a crash of the application.
CVE-2018-9251
The xz_decomp function in xzlib.c in libxml2 2.9.8, if --with-lzma is used, allows remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint, a different vulnerability than CVE-2015-8035.
Additional Info: 

N/A

Download: 

SRPMS
  1. libxml2-2.9.7-7.el8.src.rpm
    MD5: 877815ae3591e08006a047ec9b05860a
    SHA-256: 8dc5eadfb9aded95180e38fad28e65720ffcb7249260c9dce3db72f63ed93244
    Size: 5.20 MB

Asianux Server 8 for x86_64
  1. libxml2-2.9.7-7.el8.x86_64.rpm
    MD5: 09d6a609401c6af0d555fd3c93df7ac2
    SHA-256: 1add6734757db9c007465dda9bc5b6d98fda69cc333ef37514ffd2c680f95db3
    Size: 695.58 kB
  2. libxml2-devel-2.9.7-7.el8.x86_64.rpm
    MD5: 177cd5cfa048112c18cab25f94bc2feb
    SHA-256: 8e98ee91baae7a2ef264d9bc575b25422752468d00f6bc2840b018addd3aaf35
    Size: 1.04 MB
  3. python3-libxml2-2.9.7-7.el8.x86_64.rpm
    MD5: bc515ee9aaf47a54b218995f42687a5d
    SHA-256: 500ae3dbb9a2792a557eab76c082b674076ff6166418d36f66fc3ca34c1b17f9
    Size: 235.88 kB
  4. libxml2-2.9.7-7.el8.i686.rpm
    MD5: 634f1d98df22950e7353730e241f9892
    SHA-256: 5027a3826befab612236cbfa97eff249480676060ccbeb67a64fb9139d14f18e
    Size: 740.57 kB
  5. libxml2-devel-2.9.7-7.el8.i686.rpm
    MD5: 6b526544284bd50713ca2fc16453d9c4
    SHA-256: 9c8db1ad28b61d2da9adfd2d822ef30d1b92779bea868b70332d6ca120b23f4e
    Size: 1.04 MB