Critical Photon OS Security Update - PHSA-2025-4.0-0834

Updates of 'kafka', 'libxml2', 'linux' packages of Photon OS have been released...

Critical Photon OS Security Update - PHSA-2025-5.0-0562

Updates of 'libxml2' packages of Photon OS have been released...

Security Bulletin: Multiple vulnerabilities in libxml2 affect AIX/VIOS

Summary Vulnerabilities in libxml2 could cause a denial of service or other possible undefined behavior CVE-2025-49796, CVE-2025-49794, CVE-2025-49795, CVE-2025-6021. AIX uses libxml2 as part of its XML parsing functions. Vulnerability Details CVEID:CVE-2025-49796 DESCRIPTION: A vulnerability was...

Security Bulletin: A vulnerability in libxml2 affects Tivoli Netcool/OMNIbus (CVE-2024-25062)

Summary There is a vulnerability in the libxml2 library that ships as a component of Tivoli Netcool/OMNIbus. Vulnerability Details CVEID:CVE-2024-25062 DESCRIPTION: An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation a...

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-6170: Fixed a stack buffer overflow which could lead to...

SUSE-SU-2025:02355-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 - CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 - CVE-2025-6170: Fixed a stack buffer overflow which could...

CLSA-2025-1752747463 libxml2: Fix of CVE-2025-6021

CVE-2025-6021: fix buffer overflow in xmlBuildQName function...

Multiple vulnerabilities in libxml2 affect AIX

IBM SECURITY ADVISORY First Issued: Thu Jul 17 09:41:13 CDT 2025 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/libxml2advisory9.asc Security Bulletin: Multiple vulnerabilities in libxml2 affect AIX...

AIX : Multiple Vulnerabilities (IJ55269)

The version of AIX installed on the remote host is prior to APAR IJ55269. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ55269 advisory. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory...

libxml2 xmlRegEpxFromParse Integer Overflow / Heap Buffer Overflow

libxml2 suffers from an integer overflow that leads to a heap buffer overflow in xmlRegEpxFromParse...

AIX : Multiple Vulnerabilities (IJ55267)

The version of AIX installed on the remote host is prior to APAR IJ55267. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ55267 advisory. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory...

AIX : Multiple Vulnerabilities (IJ55266)

The version of AIX installed on the remote host is prior to APAR IJ55266. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ55266 advisory. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory...

AIX : Multiple Vulnerabilities (IJ55268)

The version of AIX installed on the remote host is prior to APAR IJ55268. It is, therefore, affected by multiple vulnerabilities as referenced in the IJ55268 advisory. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory...

CLSA-2025-1752654590 libxml2: Fix of 3 CVEs

CVE-2025-49794: fix use-after-free issue triggered by processing certain elements in input XML file. - CVE-2025-49796: fix memory corruption issue triggered by processing certain sch:name elements from input XML file - CVE-2025-6021: fix integer overflow in buffer size calculations to prevent...

[slackware-security] libxml2

New libxml2 packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.11.9-i586-6slack15.0.txz: Rebuilt. Recompiled with the missing security patches. Thanks to bigbadaboum for spotting this. For more...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libxml2 (SUSE-SU-2025:02314-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02314-1 advisory. - CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554...

Slackware Linux 15.0 libxml2 Multiple Vulnerabilities (SSA:2025-196-02)

The version of libxml2 installed on the remote host is prior to 2.11.9. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2025-196-02 advisory. New libxml2 packages are available for Slackware 15.0 to fix security issues. Tenable has extracted the preceding descripti...

[slackware-security] libxml2

New libxml2 packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.11.9-i586-5slack15.0.txz: Rebuilt. This update fixes bugs and the following security issues: schematron: Fix memory safety...

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-49795: Fixed a null pointer dereference which could lea...

SUSE-SU-2025:02314-1 Security update for libxml2

This update for libxml2 fixes the following issues: - CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 - CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 - CVE-2025-49795: Fixed a null pointer dereference which cou...