ELSA-2013-0581

ULN >
Oracle Linux Errata repository >
ELSA-2013-0581

ELSA-2013-0581 - libxml2 security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2013-02-28

Description

[2.7.6-12.0.1.el6_4.1]
- Update doc/redhat.gif in tarball
- Add libxml2-oracle-enterprise.patch and update logos in tarball

[2.7.6-12.el6_4.1]
-detect and stop excessive entities expansion upon replacement (rhbz#912574)

[2.7.6-12.el6]
- fix out of range heap access (CVE-2012-5134)

[2.7.6-11.el6]
- Change the XPath code to percolate allocation error (CVE-2011-1944)

[2.7.6-10.el6]
- Fix an off by one pointer access (CVE-2011-3102)

[2.7.6-9.el6]
- Fix a failure to report xmlreader parsing failures
- Fix parser local buffers size problems (rhbz#843742)
- Fix entities local buffers size problems (rhbz#843742)
- Fix an error in previous commit (rhbz#843742)
- Do not fetch external parsed entities
- Impose a reasonable limit on attribute size (rhbz#843742)
- Impose a reasonable limit on comment size (rhbz#843742)
- Impose a reasonable limit on PI size (rhbz#843742)
- Cleanups and new limit APIs for dictionaries (rhbz#843742)
- Introduce some default parser limits (rhbz#843742)
- Implement some default limits in the XPath module
- Fixup limits parser (rhbz#843742)
- Enforce XML_PARSER_EOF state handling through the parser
- Avoid quadratic behaviour in some push parsing cases (rhbz#843742)
- More avoid quadratic behaviour (rhbz#843742)
- Strengthen behaviour of the push parser in problematic situations (rhbz#843742)
- More fixups on the push parser behaviour (rhbz#843742)
- Fix a segfault on XSD validation on pattern error
- Fix an unimplemented part in RNG value validation

Related CVEs

CVE-2013-0338

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 5 (i386)	libxml2-2.6.26-2.1.21.0.1.el5_9.1.src.rpm	cefb47d9ef1f6b73274b35d3a4f75ea8	ELSA-2014-1885
	libxml2-2.6.26-2.1.21.0.1.el5_9.1.i386.rpm	60d3885979088493aa4fe0f304eaac35	ELSA-2014-1885
	libxml2-devel-2.6.26-2.1.21.0.1.el5_9.1.i386.rpm	f23dfc9115a5b93f75393c844e1ed129	ELSA-2014-1885
	libxml2-python-2.6.26-2.1.21.0.1.el5_9.1.i386.rpm	9efe26cb8220686803c71312615e2a92	ELSA-2014-1885

Oracle Linux 5 (ia64)	libxml2-2.6.26-2.1.21.0.1.el5_9.1.src.rpm	cefb47d9ef1f6b73274b35d3a4f75ea8	ELSA-2014-1885
	libxml2-2.6.26-2.1.21.0.1.el5_9.1.i386.rpm	60d3885979088493aa4fe0f304eaac35	ELSA-2014-1885
	libxml2-2.6.26-2.1.21.0.1.el5_9.1.ia64.rpm	0a3b96266a434266e82c07571cad22c1	ELSA-2014-1885
	libxml2-devel-2.6.26-2.1.21.0.1.el5_9.1.ia64.rpm	4f813f527edb1b5c5670cc3f577e756c	ELSA-2014-1885
	libxml2-python-2.6.26-2.1.21.0.1.el5_9.1.ia64.rpm	327b49ba32cf019f53923f245420d316	ELSA-2014-1885

Oracle Linux 5 (x86_64)	libxml2-2.6.26-2.1.21.0.1.el5_9.1.src.rpm	cefb47d9ef1f6b73274b35d3a4f75ea8	ELSA-2014-1885
	libxml2-2.6.26-2.1.21.0.1.el5_9.1.i386.rpm	60d3885979088493aa4fe0f304eaac35	ELSA-2014-1885
	libxml2-2.6.26-2.1.21.0.1.el5_9.1.x86_64.rpm	e61c144181baddf8d563a2f73cedcfe5	ELSA-2014-1885
	libxml2-devel-2.6.26-2.1.21.0.1.el5_9.1.i386.rpm	f23dfc9115a5b93f75393c844e1ed129	ELSA-2014-1885
	libxml2-devel-2.6.26-2.1.21.0.1.el5_9.1.x86_64.rpm	335051921392ec3f98311b2fa8407cae	ELSA-2014-1885
	libxml2-python-2.6.26-2.1.21.0.1.el5_9.1.x86_64.rpm	de48af4f7e9ed145a87f74f662e05438	ELSA-2014-1885

Oracle Linux 6 (i386)	libxml2-2.7.6-12.0.1.el6_4.1.src.rpm	3ac593e7ac9077b895573929c43b8edd	ELSA-2016-1292
	libxml2-2.7.6-12.0.1.el6_4.1.i686.rpm	a482c4f66fb8ebff45a10c6a25497c98	ELSA-2016-1292
	libxml2-devel-2.7.6-12.0.1.el6_4.1.i686.rpm	af6505d8573d330004ea708370afe9f3	ELSA-2016-1292
	libxml2-python-2.7.6-12.0.1.el6_4.1.i686.rpm	0cecb5738ea552996528cebec9d3e5eb	ELSA-2016-1292
	libxml2-static-2.7.6-12.0.1.el6_4.1.i686.rpm	bd04c8139788b78eb3835cada67a2b0a	ELSA-2016-1292

Oracle Linux 6 (x86_64)	libxml2-2.7.6-12.0.1.el6_4.1.src.rpm	3ac593e7ac9077b895573929c43b8edd	ELSA-2016-1292
	libxml2-2.7.6-12.0.1.el6_4.1.i686.rpm	a482c4f66fb8ebff45a10c6a25497c98	ELSA-2016-1292
	libxml2-2.7.6-12.0.1.el6_4.1.x86_64.rpm	de5261f3e3ff5c84cf91437f3cc954b8	ELSA-2016-1292
	libxml2-devel-2.7.6-12.0.1.el6_4.1.i686.rpm	af6505d8573d330004ea708370afe9f3	ELSA-2016-1292
	libxml2-devel-2.7.6-12.0.1.el6_4.1.x86_64.rpm	2e136f2f8f249e80bc70c04984e4907a	ELSA-2016-1292
	libxml2-python-2.7.6-12.0.1.el6_4.1.x86_64.rpm	4fa0c4636711a7d200496d4578344c4e	ELSA-2016-1292
	libxml2-static-2.7.6-12.0.1.el6_4.1.x86_64.rpm	30591163938a3c6748cf837ceff82af8	ELSA-2016-1292

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691