libxml2-2.9.7-18.el8_10.2

エラータID: AXSA:2025-9668:02

Release date: 
Monday, February 17, 2025 - 18:51
Subject: 
libxml2-2.9.7-18.el8_10.2
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

* libxml: use-after-free in xmlXIncludeAddNode (CVE-2022-49043)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2022-49043
xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free.

Solution: 

Update packages.

CVEs: 
CVE-2022-49043
xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free.
Additional Info: 

N/A

Download: 

SRPMS
  1. libxml2-2.9.7-18.el8_10.2.src.rpm
    MD5: 203d158aa06cf9a0f0ed6a570b240f2c
    SHA-256: 39346d76b5398ee978ad7b894f1522e134c6986fdf5de3d3c3a5f0bb9d3f9d22
    Size: 5.23 MB

Asianux Server 8 for x86_64
  1. libxml2-2.9.7-18.el8_10.2.i686.rpm
    MD5: aa1d1464053b732cd7a317f5fe1184ed
    SHA-256: cc29a62411e98f364a35fd01cbd0c54fdba50867948982c32177e21d4a82f402
    Size: 740.26 kB
  2. libxml2-2.9.7-18.el8_10.2.x86_64.rpm
    MD5: b84d6421bdd8a7aa1db25c35e8f1d5ef
    SHA-256: f4187fe30f10d46a22773d3c072a447eece217915c4e8ac24e29859989d428b9
    Size: 695.96 kB
  3. libxml2-devel-2.9.7-18.el8_10.2.i686.rpm
    MD5: 8e4296e5f2d3380ec1f1230bdda696e9
    SHA-256: 9b8ea316d595e7fcae5b85439095f01333634694f93b9d4c34307f27ca0ce487
    Size: 1.04 MB
  4. libxml2-devel-2.9.7-18.el8_10.2.x86_64.rpm
    MD5: 5c558d4c6795ab0f0750d255c3f346ab
    SHA-256: d516d7839c871b513fe57ebfeca58785d0637eb28d1fe47e43b9a36d5d79145d
    Size: 1.04 MB
  5. python3-libxml2-2.9.7-18.el8_10.2.x86_64.rpm
    MD5: 2ae8484e84c56288c4fa1d746a8a2438
    SHA-256: fd29a7fc3e5b1b22de5d901a94fd43bd08329f150da2f4021e810b555d79cabb
    Size: 236.82 kB