logo
DATABASE RESOURCES PRICING ABOUT US

Security update for libxml2 (moderate)

Description

This update for libxml2 fixes the following security issues: - CVE-2018-9251: The xz_decomp function allowed remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint (bsc#1088279) - CVE-2018-14567: Prevent denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint (bsc#1105166) - CVE-2018-14404: Prevent NULL pointer dereference in the xmlXPathCompOpEval() function when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case leading to a denial of service attack (bsc#1102046) This update was imported from the SUSE:SLE-15:Update update project.


Affected Package


OS OS Version Package Name Package Version
openSUSE Leap 15.0 libxml2-tools 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-tools 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python2-libxml2-python-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-devel-32bit 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-tools-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python2-libxml2-python-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-2-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python3-libxml2-python-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python3-libxml2-python 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-tools-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python2-libxml2-python 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python3-libxml2-python 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-2-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-2 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-2 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python3-libxml2-python-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-devel 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python-libxml2-python-debugsource 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python-libxml2-python-debugsource 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-2-32bit 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-2-32bit-debuginfo 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-debugsource 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-doc 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-devel 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 libxml2-debugsource 2.9.7-lp150.2.3.1
openSUSE Leap 15.0 python2-libxml2-python 2.9.7-lp150.2.3.1

Related