CVE-2025-7425 vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-11-openj9, openjdk-8-openj9, openjdk-21-openj9, openjdk-17-openj9, openjdk-26-openj9...

libxml2 security update

2.9.7-21.4 - Fix CVE-2025-9714 RHEL-119279 2.9.7.21.3 - Fix CVE-2025-32415 RHEL-100177 2.9.7.21.2 - Fix CVE-2025-7425 RHEL-102797 2.9.7-21.1 - Fix CVE-2025-6021 RHEL-96498 - Fix CVE-2025-49794 RHEL-96398 - Fix CVE-2025-49796 RHEL-96424...

Siemens S7-1500 Use After Free (CVE-2025-7425)

A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may acce...

CVE-2025-7425 affecting package libxml2 for versions less than 2.11.5-8

CVE-2025-7425 affecting package libxml2 for versions less than 2.11.5-8. A patched version of the package is available...

MiracleLinux 9 : libxml2-2.9.13-11.el9_6 (AXSA:2025-10680:11)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10680:11 advisory. libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr CVE-2025-7425 Tenable has extracted the preceding description block directl...

Ubuntu: Security Advisory (USN-7852-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: IBM MQ Appliance is affected by open source vulnerabilities (CVE-2025-8058 and CVE-2025-7425)

Summary IBM MQ Appliance has addressed open source vulnerabilities. Vulnerability Details CVEID:CVE-2025-8058 DESCRIPTION: The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc...

TencentOS Server 2: libxml2 (TSSA-2025:0785)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0785 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

libxml2 security update

An update is available for libxml2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libxml2 library is a development toolbox providing the implementation of...

CLSA-2025-1759336419 libxml2: Fix of CVE-2025-7425

Fix typo in CVE-2025-7425 fix...

CLSA-2025-1759336205 libxml2: Fix of CVE-2025-7425

Fix typo in CVE-2025-7425 fix...

CLSA-2025-1759336003 libxml2: Fix of CVE-2025-7425

Fix typo in CVE-2025-7425 fix...

[SECURITY] [DLA 4319-1] libxml2 security update

Debian LTS Advisory DLA-4319-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin September 30, 2025 https://wiki.debian.org/LTS Package : libxml2 Version : 2.9.10+dfsg-6.7+deb11u9 CVE ID : CVE-2025-9714 CVE-2025-7425 Debian Bug : 1109122 Two security issues were foun...

CLSA-2025-1758228035 Fix CVE(s): CVE-2025-7425

SECURITY UPDATE: memory corruption in attribute type handling - debian/patches/CVE-2025-7425.patch: guard against atype corruption to ensure proper ID cleanup and prevent heap-use-after-free - CVE-2025-7425...

Important: Red Hat Security Advisory: updated web-terminal/tooling container image

Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.11 on RHEL 9. The Red Hat Web Terminal 1.11 on RHEL 9 container images have been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384,...

Important: libxml2

Issue Overview: A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the...

Important: libxml2

Issue Overview: A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the...

Amazon Linux 2 : libxml2, --advisory ALAS2-2025-2977 (ALAS-2025-2977)

The version of libxml2 installed on the remote host is prior to 2.9.1-6. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2977 advisory. A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management...

ROOT-OS-DEBIAN-11-CVE-2025-7425 CVE-2025-7425 in rootio-libxml2 - Patched by Root

Root has patched CVE-2025-7425 in the rootio-libxml2 package for Root:Debian:11. Multiple fixed versions available...

[SECURITY] [DSA 5990-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5990-1 [email protected] https://www.debian.org/security/ Aron Xu August 29, 2025 https://www.debian.org/security/faq -...