(RHSA-2021:3810) Moderate: libxml2 security update

2021-10-1213:23:35

access.redhat.com

219

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.4%

JSON

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

libxml2: Use after free via namespace node in XPointer ranges (CVE-2016-4658)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat7s390xlibxml2< 2.9.1-6.el7_9.6libxml2-2.9.1-6.el7_9.6.s390x.rpm
RedHat7ppclibxml2-devel< 2.9.1-6.el7_9.6libxml2-devel-2.9.1-6.el7_9.6.ppc.rpm
RedHat7ppc64lelibxml2-static< 2.9.1-6.el7_9.6libxml2-static-2.9.1-6.el7_9.6.ppc64le.rpm
RedHat7ppc64libxml2-debuginfo< 2.9.1-6.el7_9.6libxml2-debuginfo-2.9.1-6.el7_9.6.ppc64.rpm
RedHat7x86_64libxml2-devel< 2.9.1-6.el7_9.6libxml2-devel-2.9.1-6.el7_9.6.x86_64.rpm
RedHat7x86_64libxml2-debuginfo< 2.9.1-6.el7_9.6libxml2-debuginfo-2.9.1-6.el7_9.6.x86_64.rpm
RedHat7ppc64lelibxml2< 2.9.1-6.el7_9.6libxml2-2.9.1-6.el7_9.6.ppc64le.rpm
RedHat7i686libxml2-debuginfo< 2.9.1-6.el7_9.6libxml2-debuginfo-2.9.1-6.el7_9.6.i686.rpm
RedHat7i686libxml2-static< 2.9.1-6.el7_9.6libxml2-static-2.9.1-6.el7_9.6.i686.rpm
RedHat7x86_64libxml2-python< 2.9.1-6.el7_9.6libxml2-python-2.9.1-6.el7_9.6.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	s390x	libxml2	< 2.9.1-6.el7_9.6	libxml2-2.9.1-6.el7_9.6.s390x.rpm
RedHat	7	ppc	libxml2-devel	< 2.9.1-6.el7_9.6	libxml2-devel-2.9.1-6.el7_9.6.ppc.rpm
RedHat	7	ppc64le	libxml2-static	< 2.9.1-6.el7_9.6	libxml2-static-2.9.1-6.el7_9.6.ppc64le.rpm
RedHat	7	ppc64	libxml2-debuginfo	< 2.9.1-6.el7_9.6	libxml2-debuginfo-2.9.1-6.el7_9.6.ppc64.rpm
RedHat	7	x86_64	libxml2-devel	< 2.9.1-6.el7_9.6	libxml2-devel-2.9.1-6.el7_9.6.x86_64.rpm
RedHat	7	x86_64	libxml2-debuginfo	< 2.9.1-6.el7_9.6	libxml2-debuginfo-2.9.1-6.el7_9.6.x86_64.rpm
RedHat	7	ppc64le	libxml2	< 2.9.1-6.el7_9.6	libxml2-2.9.1-6.el7_9.6.ppc64le.rpm
RedHat	7	i686	libxml2-debuginfo	< 2.9.1-6.el7_9.6	libxml2-debuginfo-2.9.1-6.el7_9.6.i686.rpm
RedHat	7	i686	libxml2-static	< 2.9.1-6.el7_9.6	libxml2-static-2.9.1-6.el7_9.6.i686.rpm
RedHat	7	x86_64	libxml2-python	< 2.9.1-6.el7_9.6	libxml2-python-2.9.1-6.el7_9.6.x86_64.rpm