libxml2-2.9.7-9.el8

エラータID: AXSA:2021-1786:01

Release date: 
Sunday, June 6, 2021 - 04:56
Subject: 
libxml2-2.9.7-9.el8
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

* libxml2: Buffer overflow vulnerability in xmlEncodeEntitiesInternal() in entities.c (CVE-2020-24977)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2020-24977
GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.

Solution: 

Update packages.

CVEs: 
CVE-2020-24977
GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.
Additional Info: 

N/A

Download: 

SRPMS
  1. libxml2-2.9.7-9.el8.src.rpm
    MD5: 8bfc11d732fde8e7cd7695de5542ba13
    SHA-256: f321325694b738cc058743b1de8d97a7c5ea64e0b32da917bc2f25ad14b2d418
    Size: 5.21 MB

Asianux Server 8 for x86_64
  1. libxml2-2.9.7-9.el8.x86_64.rpm
    MD5: 54474fec1302036f1047ec32ac3ef8d5
    SHA-256: 964d7093ea7e576666696872efa7ee24d2f568a4c40be649066e8d422ce1df71
    Size: 694.89 kB
  2. libxml2-devel-2.9.7-9.el8.x86_64.rpm
    MD5: 114833bcf20e6d6fc853a000a40f0d4a
    SHA-256: a14de00463f48f9d660a02f173da38bc4ade0e4ec7351d446299a602c5f5bd29
    Size: 1.04 MB
  3. python3-libxml2-2.9.7-9.el8.x86_64.rpm
    MD5: 11b8354ea663793e68360a80c73548f5
    SHA-256: ae9ca9cdd5b95809caa07957ca39c8602c31327e1101abb2b493734739b1fe88
    Size: 235.77 kB
  4. libxml2-2.9.7-9.el8.i686.rpm
    MD5: 88bdb069dcb3dbd09e901c5c5a3395b6
    SHA-256: ac9f9b7cf4d3012326c82f92946b3c02379279b0b0bd50efc9fd70cbc7df331e
    Size: 739.29 kB
  5. libxml2-devel-2.9.7-9.el8.i686.rpm
    MD5: e389c4fc0f69a8fd05c378450f3198d9
    SHA-256: f08a28150741b5d41d3cd7f6f9652c49ccbbcd8bf242ad7cfa3b3c7da14144fd
    Size: 1.04 MB