FEDORA-EPEL-2016-6a9bb3d488

security update in Fedora EPEL 7 for mingw-libxml2

Status: stable 2 years ago

Update to 2.9.3 which fixes various CVE's

Comments 5

This update has been submitted for testing by epienbro.

This update has been pushed to testing.

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by epienbro.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines
#1213960 mingw-libxml2: libxml2: out-of-bounds memory access when parsing an unclosed HTML comment [epel-all]
#1262854 mingw-libxml2: libxml2: Out-of-bounds memory access when parsing unclosed HTMl comment [epel-7]
#1274226 CVE-2015-7941 mingw-libxml2: libxml2: Out-of-bounds memory access [epel-7]
#1276300 CVE-2015-7942 mingw-libxml2: libxml2: heap-based buffer overflow in xmlParseConditionalSections() [epel-7]
#1277150 CVE-2015-8035 mingw-libxml2: libxml2: DoS when parsing specially crafted XML document if XZ support is enabled [epel-7]
#1281953 mingw-libxml2: libxml2: Buffer overread with HTML parser in push mode in xmlSAX2TextNode [epel-7]
Is the update generally functional?
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 1
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago

Related Bugs 6

00 #1213960 mingw-libxml2: libxml2: out-of-bounds memory access when parsing an unclosed HTML comment [epel-all]
00 #1262854 mingw-libxml2: libxml2: Out-of-bounds memory access when parsing unclosed HTMl comment [epel-7]
00 #1274226 CVE-2015-7941 mingw-libxml2: libxml2: Out-of-bounds memory access [epel-7]
00 #1276300 CVE-2015-7942 mingw-libxml2: libxml2: heap-based buffer overflow in xmlParseConditionalSections() [epel-7]
00 #1277150 CVE-2015-8035 mingw-libxml2: libxml2: DoS when parsing specially crafted XML document if XZ support is enabled [epel-7]
00 #1281953 mingw-libxml2: libxml2: Buffer overread with HTML parser in push mode in xmlSAX2TextNode [epel-7]

Automated Test Results