Release date:
2025-05-19 21:14:28 UTC
Description:
* SECURITY UPDATE: Out-of-bounds memory access in Python API bindings
- debian/patches/CVE-2025-32414.patch: Limit character reads and reserve
buffer space for UTF-8 encoding to prevent overflow
- CVE-2025-32414
* SECURITY UPDATE: Heap buffer under-read in XML schema validation
- debian/patches/CVE-2025-32415.patch: Fix heap buffer overflow
in xmlSchemaIDCFillNodeTables
- CVE-2025-32415
Updated packages:
-
libxml2_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els3_amd64.deb
sha:fefb720955d391f95c4dc0a6a72c0a0d2d5dd715
-
libxml2-dev_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els3_amd64.deb
sha:b52b0e2b839e0a4abcce14aa258b1448912e33c3
-
libxml2-doc_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els3_all.deb
sha:370bbb662d79ea78043a42313bc10f08ac717025
-
libxml2-utils_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els3_amd64.deb
sha:14ec593717c7f3c2a1b43c81c2149b5f5f5d0416
-
python-libxml2_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els3_amd64.deb
sha:0b6cc6f54a864bcbfd1da6690c0960124ba22ac6
-
python3-libxml2_2.9.4+dfsg1-6.1ubuntu1.9+tuxcare.els3_amd64.deb
sha:9ade75e576c3dd5638c4a94d92d803bdb8224e49
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
