[ubuntu/questing-proposed] libxml2 2.12.7+dfsg+really2.9.14-1 (Accepted)
Matthias Klose
m1 at klose.in-berlin.de
Tue May 20 05:41:08 UTC 2025
libxml2 (2.12.7+dfsg+really2.9.14-1) unstable; urgency=medium
* Acknowledge previous NMUs.
* Security fixes:
- CVE-2023-39615: out-of-bounds read via the xmlSAX2StartElement()
(Closes: #1051230)
- CVE-2023-45322: use-after-free in xmlUnlinkNode()
(Closes: #1053629)
- CVE-2024-25062: use-after-free in xmlValidatePopElement()
(Closes: #1063234)
- CVE-2025-32414: out-of-bounds read in Python bindings
(Closes: #1102521)
- CVE-2025-32415: heap-based buffer under-read via
xmlSchemaIDCFillNodeTables() (Closes: #1103511)
Date: 2025-05-15 16:34:33.304650+00:00
Signed-By: Matthias Klose <m1 at klose.in-berlin.de>
https://launchpad.net/ubuntu/+source/libxml2/2.12.7+dfsg+really2.9.14-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list