CVE-2025-7425 vulnerabilities

Vulnerabilities for packages: openjdk-17-openj9, openjdk-11-openj9, openjdk-21-openj9, openjdk-8-openj9, openjdk-25-openj9, openjdk-26-openj9...

Siemens S7-1500 Use After Free (CVE-2025-7425)

A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may acce...

MiracleLinux 9 : libxml2-2.9.13-11.el9_6 (AXSA:2025-10680:11)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10680:11 advisory. libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr CVE-2025-7425 Tenable has extracted the preceding description block directl...

Ubuntu: Security Advisory (USN-7852-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: IBM MQ Appliance is affected by open source vulnerabilities (CVE-2025-8058 and CVE-2025-7425)

Summary IBM MQ Appliance has addressed open source vulnerabilities. Vulnerability Details CVEID:CVE-2025-8058 DESCRIPTION: The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc...

TencentOS Server 2: libxml2 (TSSA-2025:0785)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0785 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

libxml2 security update

An update is available for libxml2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libxml2 library is a development toolbox providing the implementation of...

CLSA-2025-1759336419 libxml2: Fix of CVE-2025-7425

Fix typo in CVE-2025-7425 fix...

[SECURITY] [DLA 4319-1] libxml2 security update

Debian LTS Advisory DLA-4319-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin September 30, 2025 https://wiki.debian.org/LTS Package : libxml2 Version : 2.9.10+dfsg-6.7+deb11u9 CVE ID : CVE-2025-9714 CVE-2025-7425 Debian Bug : 1109122 Two security issues were foun...

CLSA-2025-1758228035 Fix CVE(s): CVE-2025-7425

SECURITY UPDATE: memory corruption in attribute type handling - debian/patches/CVE-2025-7425.patch: guard against atype corruption to ensure proper ID cleanup and prevent heap-use-after-free - CVE-2025-7425...

Important: Red Hat Security Advisory: updated web-terminal/tooling container image

Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.11 on RHEL 9. The Red Hat Web Terminal 1.11 on RHEL 9 container images have been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384,...

Important: libxml2

Issue Overview: A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the...

Important: libxml2

Issue Overview: A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the...

Amazon Linux 2 : libxml2, --advisory ALAS2-2025-2977 (ALAS-2025-2977)

The version of libxml2 installed on the remote host is prior to 2.9.1-6. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2977 advisory. A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management...

ROOT-OS-DEBIAN-11-CVE-2025-7425 CVE-2025-7425 in rootio-libxml2 - Patched by Root

Root has patched CVE-2025-7425 in the rootio-libxml2 package for Root:Debian:11. Multiple fixed versions available...

[SECURITY] [DSA 5990-1] libxml2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5990-1 [email protected] https://www.debian.org/security/ Aron Xu August 29, 2025 https://www.debian.org/security/faq -...

libxml2 security update

2.9.1-6.0.9.6 - Fix CVE-2025-7425: heap-use-after-free in xmlFreeID Orabug: 38290330...

Linux Distros Unpatched Vulnerability : CVE-2025-7425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as...

Important: Red Hat Security Advisory: libxml2 security update

An update for libxml2 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RHEL 8 : libxml2 (RHSA-2025:13310)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:13310 advisory. The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fixes: libxslt: Heap Use-After-Free in...