Moderate: Red Hat Security Advisory: libxml2 security update

🗓️ 25 Jan 2024 08:35:03Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 48 Views

Security update for libxml2 library addressing multiple CVE

Reporter	Title	Published	Views	Family All 648
IBM Security Bulletins	Security Bulletin: Security Vulnerabilities fixed in IBM Security Verify Access (CVE-2022-40303)	14 Oct 202305:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from systemd, libcap, openssl-libs, libxml2, go-toolset, and prometheus-operator	28 Aug 202308:17	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Operator package issues	30 Nov 202318:45	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Observability with Instana using third-party Kubernetes Operators is affected by Multiple Security Vulnerabilities	15 Mar 202413:52	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified with the DS8900F and DS8A00 Hardware Management Console (HMC)	27 May 202523:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Gnome ibxml2 arbitrary code execution vulnerabilities( CVE-2022-40304, CVE-2022-40303)	6 Jul 202317:15	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Storage Ceph is vulnerable to Improper Restriction of Operations within the Bounds of a Memory Buffer in the RHEL UBI (CVE-2023-39615)	5 Aug 202422:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	7 Jun 202316:53	–	ibm
IBM Security Bulletins	Security Bulletin: CVE-2023-29469 may affect IBM CICS TX Advanced 10.1	8 Jun 202318:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from go-git , Golang, GnuTLS, Libxml2, protobuf-c, JSON-java, Libmaxminddb, SQLite3 packages and cryptographic algorithms	1 Mar 202405:14	–	ibm

Source	Link
access	www.access.redhat.com/security/updates/classification/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

02 Jun 2026 15:04Current

7High risk

Vulners AI Score7

CVSS 3.17.8

EPSS0.00388

SSVC

libxml2 security update integer overflows dict corruption null dereference buffer overflow xml standards development toolbox cve-2022-40303 cve-2022-40304 cve-2023-28484 cve-2023-29469 cve-2023-39615 cvss score