Lucene search

K
mageiaGentoo FoundationMGASA-2021-0213
HistoryMay 19, 2021 - 10:29 p.m.

Updated libxml2 packages fix security vulnerabilities

2021-05-1922:29:59
Gentoo Foundation
advisories.mageia.org
99
updated packages
libxml2
security vulnerabilities
use-after-free
buffer overflow
null pointer
cve-2021-3516
cve-2021-3517
cve-2021-3518
cve-2021-3537
unix

EPSS

0.017

Percentile

87.8%

The updated packages fix security vulnerabilities: Use-after-free in xmlEncodeEntitiesInternal() in entities.c. (CVE-2021-3516) Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c. (CVE-2021-3517) Use-after-free in xmlXIncludeDoProcess() in xinclude.c. (CVE-2021-3518) NULL pointer dereference in valid.c in xmlValidBuildAContentModel. (CVE-2021-3537)

OSVersionArchitecturePackageVersionFilename
Mageia7noarchlibxml2< 2.9.9-2.6libxml2-2.9.9-2.6.mga7
Mageia8noarchlibxml2< 2.9.10-7.1libxml2-2.9.10-7.1.mga8