libxml2-2.9.7-12.el8

エラータID: AXSA:2022-3108:01

Release date: 
Wednesday, March 16, 2022 - 10:15
Subject: 
libxml2-2.9.7-12.el8
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

* libxml2: Use-after-free of ID and IDREF attributes (CVE-2022-23308)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-23308
valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.

Solution: 

Update packages.

CVEs: 
CVE-2022-23308
valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.
Additional Info: 

N/A

Download: 

SRPMS
  1. libxml2-2.9.7-12.el8.src.rpm
    MD5: af2faf24654c795b44f55d9409fc6b60
    SHA-256: ac4bcab367e6387fdc7e06fa4a6fe4b931e7ada0b73ee3a093124c0cc17575f8
    Size: 5.21 MB

Asianux Server 8 for x86_64
  1. libxml2-2.9.7-12.el8.x86_64.rpm
    MD5: 828061cfbccf2dc3ae03f61a48d3ba1a
    SHA-256: 762d34932e758596036e9b995a5f16e2089a12f6f3142cdcdc7b28dee1ca86cc
    Size: 695.02 kB
  2. libxml2-devel-2.9.7-12.el8.x86_64.rpm
    MD5: 97f8f8ebcaf7a5b45a6dafd7fac0699b
    SHA-256: 34c6e74fc1337f89594ce83f082c991cce38a7872ec988be4e8c416e54272a6f
    Size: 1.04 MB
  3. python3-libxml2-2.9.7-12.el8.x86_64.rpm
    MD5: 3c2384389e6ef3d8e3ce14eb97f68af7
    SHA-256: 1d95fe220f51c6c1ff63b07b336c2c98ddedca4838b72a94b79e66a7a5ed739a
    Size: 236.08 kB
  4. libxml2-2.9.7-12.el8.i686.rpm
    MD5: d96b568b7db73d80b8befde27a06a96f
    SHA-256: 16429ada16467f89c4e5adbefbd05dac0de4f8fc26282d29dab6051a9edf3b37
    Size: 739.79 kB
  5. libxml2-devel-2.9.7-12.el8.i686.rpm
    MD5: 29bc24de7b2b5cf23b2de25d8e196d14
    SHA-256: 5b1ba4244ac53a5feaf4db1216c550f6e44a42c4c443221ade80f505447be4dd
    Size: 1.04 MB