stable

libxml2-2.9.12-2.fc34

FEDORA-2021-e8b7e177a4 created by amigadave 4 years ago for Fedora 34

Update to 2.9.12

  • Fix CVE-2021-3541
  • Verify sources with GPG signature

Logout Required
After installing this update it is required that you logout of your current user session and log back in to ensure the changes supplied by this update are applied properly.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2021-e8b7e177a4

This update has been submitted for testing by amigadave.

4 years ago

This update's test gating status has been changed to 'failed'.

4 years ago

This update's test gating status has been changed to 'waiting'.

4 years ago

This update's test gating status has been changed to 'failed'.

4 years ago

This update's test gating status has been changed to 'passed'.

4 years ago
User Icon zbyszek commented & provided feedback 4 years ago
karma

I'm seeing an error in rawhide. But it seems that it's consistent with 2.9.12 in other builds too, so I'm setting the karma here too.

python3-lxml seems broken with this update. lxml.etree.tostring() prints trailing garbage after the element. See https://github.com/systemd/systemd/issues/19601 for a reproducer.

This update has been pushed to testing.

4 years ago

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

4 years ago
User Icon bojan commented & provided feedback 4 years ago

Have a couple of machines that booted fine with it, so that is probably not hitting this problem. Anyhow, not giving karma.

User Icon bojan commented & provided feedback 4 years ago
karma

Yep, broken. Running tracer ends up in a trace

User Icon bojan commented & provided feedback 4 years ago
karma
User Icon andilinux commented & provided feedback 4 years ago
karma

no issues

amigadave edited this update.

New build(s):

  • libxml2-2.9.12-2.fc34

Removed build(s):

  • libxml2-2.9.12-1.fc34

Karma has been reset.

4 years ago

This update has been submitted for testing by amigadave.

4 years ago

This update's test gating status has been changed to 'failed'.

4 years ago

This update's test gating status has been changed to 'passed'.

4 years ago

This update has been pushed to testing.

4 years ago
User Icon bojan commented & provided feedback 4 years ago
karma

New build works with tracer.

User Icon filiperosset commented & provided feedback 4 years ago
karma

no regressions noted

This update can be pushed to stable now if the maintainer wishes

4 years ago
User Icon pwalter commented & provided feedback 4 years ago
karma

Works

This update has been submitted for stable by amigadave.

4 years ago

This update has been pushed to stable.

4 years ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
3
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
modified
4 years ago
BZ#1960153 CVE-2021-3541 libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms [fedora-all]
0
0

Automated Test Results