OVMSA-2015-0152
- ULN >
- Oracle Linux Errata repository >
- OVMSA-2015-0152
OVMSA-2015-0152 - libxml2 security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2015-12-07 |
Description
[2.7.6-20.0.1]
- Update doc/redhat.gif in tarball
- Add libxml2-oracle-enterprise.patch and update logos in tarball
[2.7.6-20.1]
- Fix a series of CVEs (rhbz#1286495)
- CVE-2015-7941 Cleanup conditional section error handling
- CVE-2015-8317 Fail parsing early on if encoding conversion failed
- CVE-2015-7942 Another variation of overflow in Conditional sections
- CVE-2015-7942 Fix an error in previous Conditional section patch
- Fix parsing short unclosed comment uninitialized access
- CVE-2015-7498 Avoid processing entities after encoding conversion failures
- CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey
- CVE-2015-5312 Another entity expansion issue
- CVE-2015-7499 Add xmlHaltParser() to stop the parser
- CVE-2015-7499 Detect incoherency on GROW
- CVE-2015-7500 Fix memory access error due to incorrect entities boundaries
- CVE-2015-8242 Buffer overead with HTML parser in push mode
- Libxml violates the zlib interface and crashes
Related CVEs
| CVE-2015-5312 |
| CVE-2015-7497 |
| CVE-2015-7498 |
| CVE-2015-7499 |
| CVE-2015-7500 |
| CVE-2015-7941 |
| CVE-2015-7942 |
| CVE-2015-8241 |
| CVE-2015-8242 |
| CVE-2015-8317 |
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
| Oracle VM 3.3 (x86_64) | libxml2-2.7.6-20.0.1.el6_7.1.src.rpm | 540fadd0fb66defbad41955b8fc51a24 | OVMSA-2016-0087 |
| libxml2-2.7.6-20.0.1.el6_7.1.x86_64.rpm | 7734d2f5752277657e56e780a7cefe6f | OVMSA-2016-0087 | |
| libxml2-python-2.7.6-20.0.1.el6_7.1.x86_64.rpm | d81d0f5f39d184bf0a2e6a63e29b5a47 | OVMSA-2016-0087 | |
| Oracle VM 3.4 (x86_64) | libxml2-2.7.6-20.0.1.el6_7.1.src.rpm | 540fadd0fb66defbad41955b8fc51a24 | OVMSA-2016-0087 |
| libxml2-2.7.6-20.0.1.el6_7.1.x86_64.rpm | 7734d2f5752277657e56e780a7cefe6f | OVMSA-2016-0087 | |
| libxml2-python-2.7.6-20.0.1.el6_7.1.x86_64.rpm | d81d0f5f39d184bf0a2e6a63e29b5a47 | OVMSA-2016-0087 | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
