stable

libxml2-2.9.4-2.fc25

FEDORA-2017-a3a47973eb created by rdieter 8 years ago for Fedora 25

Update to latest upstream release, includes several security related fixes.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2017-a3a47973eb

This update has been submitted for testing by rdieter.

8 years ago

This update has been pushed to testing.

8 years ago
User Icon bojan commented & provided feedback 8 years ago
karma

No regressions noticed on x86_64.

User Icon cserpentis commented & provided feedback 8 years ago
karma

works for me

User Icon dhgutteridge commented & provided feedback 8 years ago
karma

No regressions noted.

User Icon hreindl commented & provided feedback 8 years ago
karma

works for me

User Icon dustymabe commented 8 years ago

not explicitly tested but does not seem to cause issues on atomic host running openshift

User Icon filiperosset commented & provided feedback 8 years ago
karma

no regressions noted

This update has been submitted for stable by rdieter.

8 years ago

This update has been pushed to stable.

8 years ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
5
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-4
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
8 years ago
in testing
8 years ago
in stable
8 years ago
Builds
1
libxml2-2.9.4-2.fc25
BZ#1338682 CVE-2016-1833 libxml2: Heap-based buffer overread in htmlCurrentChar
0
0
BZ#1338686 CVE-2016-4447 libxml2: Heap-based buffer underreads due to xmlParseName
0
0
BZ#1338691 CVE-2016-1835 libxml2: Heap use-after-free in xmlSAX2AttributeNs
0
0
BZ#1338696 CVE-2016-1837 libxml2: Heap use-after-free in htmlPArsePubidLiteral and htmlParseSystemiteral
0
0
BZ#1338700 CVE-2016-4448 libxml2: Format string vulnerability
0
0
BZ#1338701 CVE-2016-4449 libxml2: Inappropriate fetch of entities content
0
0
BZ#1338702 CVE-2016-1836 libxml2: Heap use-after-free in xmlDictComputeFastKey
0
0
BZ#1338703 CVE-2016-1839 libxml2: Heap-based buffer overread in xmlDictAddString
0
0
BZ#1338705 CVE-2016-1838 libxml2: Heap-based buffer overread in xmlPArserPrintFileContextInternal
0
0
BZ#1338706 CVE-2016-1840 libxml2: Heap-buffer-overflow in xmlFAParserPosCharGroup
0
0
BZ#1338708 CVE-2016-1834 libxml2: Heap-buffer-overflow in xmlStrncat
0
0
BZ#1338711 CVE-2016-1762 libxml2: Heap-based buffer-overread in xmlNextChar
0
0
BZ#1349794 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-4447 CVE-2016-4448 CVE-2016-4449 libxml2: various flaws [fedora-all]
0
0
BZ#1358641 CVE-2016-5131 chromium-browser: use-after-free in libxml
0
0
BZ#1361439 CVE-2016-5131 libxml2: chromium-browser: use-after-free in libxml [fedora-all]
0
0
BZ#1384424 CVE-2016-4658 libxml2: Use after free via namespace node in XPointer ranges
0
0
BZ#1384427 CVE-2016-4658 libxml2: Use after free via namespace node in XPointer ranges [fedora-all]
0
0
BZ#1395609 CVE-2016-9318 libxml2: XML External Entity vulnerability
0
0
BZ#1395610 CVE-2016-9318 libxml2: XML External Entity vulnerability [fedora-all]
0
0
BZ#1398939 libxml2 v2.9.3-4 causes TypeError with python3-feedparser
0
0
BZ#1421998 CVE-2017-5969 libxml2: Null pointer dereference in xmlSaveDoc implementation [fedora-all]
0
0
libxml2-2.9.4-2.fc25

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.11.2 on bodhi-web-12-knmhk.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy