[ubuntu/plucky-proposed] libxml2 2.12.7+dfsg+really2.9.14-0.2ubuntu4 (Accepted)
Fabian Toepfer
fabian.toepfer at canonical.com
Fri Feb 21 13:46:18 UTC 2025
libxml2 (2.12.7+dfsg+really2.9.14-0.2ubuntu4) plucky; urgency=medium
* SECURITY UPDATE: use-after-free
- debian/patches/CVE-2024-56171.patch: Fix use-after-free after
xmlSchemaItemListAdd.
- CVE-2024-56171
* SECURITY UPDATE: stack-based buffer overflow
- debian/patches/CVE-2025-24928-pre1.patch: Check for NULL node->name
in xmlSnprintfElements.
- debian/patches/CVE-2025-24928.patch: Fix stack-buffer-overflow in
xmlSnprintfElements.
- CVE-2025-24928
* SECURITY UPDATE: NULL pointer dereference
- debian/patches/CVE-2025-27113.patch: Fix compilation of explicit
child axis.
- CVE-2025-27113
Date: Fri, 21 Feb 2025 13:20:17 +0100
Changed-By: Fabian Toepfer <fabian.toepfer at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/libxml2/2.12.7+dfsg+really2.9.14-0.2ubuntu4
-------------- next part --------------
Format: 1.8
Date: Fri, 21 Feb 2025 13:20:17 +0100
Source: libxml2
Built-For-Profiles: noudeb
Architecture: source
Version: 2.12.7+dfsg+really2.9.14-0.2ubuntu4
Distribution: plucky
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Fabian Toepfer <fabian.toepfer at canonical.com>
Changes:
libxml2 (2.12.7+dfsg+really2.9.14-0.2ubuntu4) plucky; urgency=medium
.
* SECURITY UPDATE: use-after-free
- debian/patches/CVE-2024-56171.patch: Fix use-after-free after
xmlSchemaItemListAdd.
- CVE-2024-56171
* SECURITY UPDATE: stack-based buffer overflow
- debian/patches/CVE-2025-24928-pre1.patch: Check for NULL node->name
in xmlSnprintfElements.
- debian/patches/CVE-2025-24928.patch: Fix stack-buffer-overflow in
xmlSnprintfElements.
- CVE-2025-24928
* SECURITY UPDATE: NULL pointer dereference
- debian/patches/CVE-2025-27113.patch: Fix compilation of explicit
child axis.
- CVE-2025-27113
Checksums-Sha1:
7668d892236da5aafbc163595f577113bc60f329 3109 libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4.dsc
379c6bcc335552c2852e60c95d7e830c0903752f 38436 libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4.debian.tar.xz
e4be548253a0e2b6a25d0e013813776712deda5f 6176 libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4_source.buildinfo
Checksums-Sha256:
731b190bbc4df9dc5aec55404ed0cc2f8044e68f18761a6886fa6e73de01b058 3109 libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4.dsc
25138e53206baa4f9e7ca96737f470a22df6fc4f2c6195e20b0bcd652da3cd92 38436 libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4.debian.tar.xz
e3fe1c2bf21cb0e7790b237ea876b69118ced6871b9560d39fe4cbc81ed25b6c 6176 libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4_source.buildinfo
Files:
adb7b943d567b849a780ff49ceca1df7 3109 libs optional libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4.dsc
d711211efdec70dee0540571425ad6bc 38436 libs optional libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4.debian.tar.xz
93bc30cead08ddc5f335ebb04193e1fd 6176 libs optional libxml2_2.12.7+dfsg+really2.9.14-0.2ubuntu4_source.buildinfo
Original-Maintainer: Debian XML/SGML Group <debian-xml-sgml-pkgs at lists.alioth.debian.org>
More information about the plucky-changes
mailing list