[CLSA-2026:1783588204] libxml2: Fix of CVE-2026-11979
Type:
security
Severity:
Important
Release date:
2026-07-09 09:10:20 UTC
Description:
- CVE-2026-11979: add bounds checks in xmlcatalog --shell usershell() to prevent stack buffer overflows when parsing overly long command lines
CVEs fixed:
Updated packages:
  • libxml2-2.9.1-6.0.11.el7_9.6.tuxcare.els6.i686.rpm
    sha:f43436dc000c70d3dd45d03166598bc2ebf552374e93c30fd2a5602fa410fd5d
  • libxml2-2.9.1-6.0.11.el7_9.6.tuxcare.els6.x86_64.rpm
    sha:f247379b755ad60fb1541b28f30a772938e9cea343d9a78903786b46cf435281
  • libxml2-devel-2.9.1-6.0.11.el7_9.6.tuxcare.els6.i686.rpm
    sha:9e546d1f19bfc1f4efae0137d4784c94a90dea3243ad9aa3a0b71af0730fa92c
  • libxml2-devel-2.9.1-6.0.11.el7_9.6.tuxcare.els6.x86_64.rpm
    sha:00181b8891d7a3596dc2f08fabf8f7044312b29a036b12b676e2870a63ff05b2
  • libxml2-python-2.9.1-6.0.11.el7_9.6.tuxcare.els6.x86_64.rpm
    sha:1f7e5ec8151ac7f306283636593a45b392165f7aa17bedde3a27f34c4ecb24d1
  • libxml2-static-2.9.1-6.0.11.el7_9.6.tuxcare.els6.i686.rpm
    sha:3e5d6aa309aa5f947b466fa223b7be8907cd0800cc11fa1767a7be7ea91f6768
  • libxml2-static-2.9.1-6.0.11.el7_9.6.tuxcare.els6.x86_64.rpm
    sha:326ac033448f91cad7b63709d10c4ae01a8d4f8d26f054b733f560ebbcb1372b
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.