libxml2-2.9.13-12.el9_6

The libxml2 library is a development toolbox providing the implementation of various XML standards.

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

The libxml2 library is a development toolbox providing the implementation of various XML standards.

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)

The libxml2 library is a development toolbox providing the implementation of various XML standards.

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

The libxml2 library is a development toolbox providing the implementation of various XML standards.

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

* libxml2: Out-of-Bounds Read in libxml2 (CVE-2025-32414)
* libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables (CVE-2025-32415)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-32414
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API (Python bindings) because of an incorrect return value. This occurs in xmlPythonFileRead and xmlPythonFileReadRaw because of a difference between bytes and characters.
CVE-2025-32415
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used.