OVMSA-2014-0031 - libxml2 security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2014-11-03 |
Description
[2.7.6-17.0.1.el6_6.1]
- Update doc/redhat.gif in tarball
- Add libxml2-oracle-enterprise.patch and update logos in tarball
[libxml2-2.7.6-17.el6.1]
- CVE-2014-3660 denial of service via recursive entity expansion (rhbz#1149085)
[libxml2-2.7.6-17.el6]
- Fix a set of regressions introduced in CVE-2014-0191 (rhbz#1105011)
[libxml2-2.7.6-16.el6]
- Improve handling of xmlStopParser(CVE-2013-2877)
[libxml2-2.7.6-15.el6]
- Do not fetch external parameter entities (CVE-2014-0191)
[libxml2-2.7.6-14.el6]
- Fix a regression in 2.9.0 breaking validation while streaming (rhbz#863166)
[2.7.6-13.el6]
- detect and stop excessive entities expansion upon replacement (rhbz#912575)
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle VM 3.3 (x86_64) | libxml2-2.7.6-17.0.1.el6_6.1.src.rpm | 6c4ba469288127861894b87932763f4e | OVMSA-2016-0087 |
| libxml2-2.7.6-17.0.1.el6_6.1.x86_64.rpm | dd6676c8ff70a8489c85d9a6849d5a86 | OVMSA-2016-0087 |
| libxml2-python-2.7.6-17.0.1.el6_6.1.x86_64.rpm | cf7fdc37a7a86ca55e89710d03efe7c1 | OVMSA-2016-0087 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
