Lucene search
AlmaLinuxALSA-2020:4479HistoryNov 03, 2020 - 12:08 p.m.
Moderate: libxml2 security update
2020-11-0312:08:23
errata.almalinux.org
30
libxml2
security update
memory leak
infinite loop
cve-2019-19956
cve-2019-20388
cve-2020-7595
parser.c
xmlschemas.c
xmlstringlendecodeentities
cvss score
almalinux
unix
EPSS
0.009
Percentile
82.5%
The libxml2 library is a development toolbox providing the implementation of various XML standards.
Security Fix(es):
-
libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c (CVE-2019-19956)
-
libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c (CVE-2019-20388)
-
libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations (CVE-2020-7595)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 8 | i686 | libxml2 | < 2.9.7-8.el8 | libxml2-2.9.7-8.el8.i686.rpm |
| almalinux | 8 | x86_64 | libxml2 | < 2.9.7-8.el8 | libxml2-2.9.7-8.el8.x86_64.rpm |
| almalinux | 8 | i686 | libxml2-devel | < 2.9.7-8.el8 | libxml2-devel-2.9.7-8.el8.i686.rpm |
| almalinux | 8 | x86_64 | libxml2-devel | < 2.9.7-8.el8 | libxml2-devel-2.9.7-8.el8.x86_64.rpm |
| almalinux | 8 | x86_64 | python3-libxml2 | < 2.9.7-8.el8 | python3-libxml2-2.9.7-8.el8.x86_64.rpm |
Related
nessus
nessus
NewStart CGSL CORE 5.05 / MAIN 5.05 : libxml2 Multiple Vulnerabilities (NS-SA-2021-0148)
2021-10-28 00:00:00
EulerOS 2.0 SP2 : libxml2 (EulerOS-SA-2020-1670)
2020-06-17 00:00:00
openSUSE Security Update : libxml2 (openSUSE-2020-681)
2020-05-26 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: mingw-libxml2-2.9.10-1.fc32
2020-05-01 04:08:08
[SECURITY] Fedora 30 Update: libxml2-2.9.10-3.fc30
2020-04-30 02:51:35
[SECURITY] Fedora 31 Update: mingw-libxml2-2.9.10-3.fc31
2020-09-19 22:45:29
redhat
redhat
(RHSA-2020:4479) Moderate: libxml2 security update
2020-11-03 12:08:23
(RHSA-2020:3996) Moderate: libxml2 security and bug fix update
2020-09-29 07:49:53
openvas
openvas
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-1408)
2020-04-16 00:00:00
Fedora: Security Advisory for libxml2 (FEDORA-2020-0c71c00af4)
2020-04-30 00:00:00
Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2020-1533)
2020-04-30 00:00:00
ibm
ibm
amazon
amazon
Medium: libxml2
2020-10-26 18:09:00
Medium: libxml2
2020-10-22 18:25:00
oraclelinux
oraclelinux
libxml2 security and bug fix update
2020-10-06 00:00:00
libxml2 security update
2020-11-10 00:00:00
suse
suse
Security update for libxml2 (moderate)
2020-05-23 00:00:00
Security update for libxml2 (moderate)
2020-06-08 00:00:00
centos
centos
libxml2 security update
2020-10-20 18:27:26
gentoo
gentoo
libxml2: Multiple vulnerabilities
2020-10-20 00:00:00
ics
ics
Siemens SINEMA Remote Connect Server
2021-04-13 12:00:00
Hitachi Energy APM Edge (Update A)
2022-10-18 12:00:00
cloudfoundry
cloudfoundry
USN-4274-1: libxml2 vulnerabilities | Cloud Foundry
2020-02-20 00:00:00
USN-4991-1: libxml2 vulnerabilities | Cloud Foundry
2021-07-08 00:00:00
ubuntu
ubuntu
libxml2 vulnerabilities
2020-02-10 00:00:00
libxml2 vulnerabilities
2021-06-17 00:00:00
mageia
mageia
Updated libxml2_2 packages fix security vulnerabilities
2020-02-25 00:44:46
Updated libxml2 packages fix security vulnerability
2020-01-05 18:37:51
Updated libxml2 packages fix security vulnerability
2020-07-05 01:47:21
archlinux
archlinux
[ASA-202011-15] libxml2: multiple issues
2020-11-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package libxml2 version 1:2.9.10-alt4
2020-11-06 00:00:00
Security fix for the ALT Linux 9 package libxml2 version 1:2.9.10-alt4
2020-11-09 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-1.0-0271
2020-02-05 00:00:00
Important Photon OS Security Update - PHSA-2020-0203
2020-01-30 00:00:00
Important Photon OS Security Update - PHSA-2020-0271
2020-02-05 00:00:00
freebsd
freebsd
libxml -- multiple vulnerabilities
2020-01-21 00:00:00
Gitlab -- Multiple Vulnerabilities
2020-04-30 00:00:00
osv
osv
libxml2 - security update
2020-09-09 00:00:00
libxml2 - security update
2019-12-28 00:00:00
debian
debian
[SECURITY] [DLA 2369-1] libxml2 security update
2020-09-09 22:41:50
[SECURITY] [DLA 2048-1] libxml2 security update
2019-12-28 17:59:43
veracode
veracode
Denial Of Service (DoS)
2020-01-22 13:24:09
Denial Of Service (DoS)
2020-01-21 03:40:01
Denial Of Service (DoS)
2020-01-22 13:00:16
cvelist
cvelist
prion
prion
Memory corruption
2020-01-21 23:15:00
Memory corruption
2019-12-24 16:15:00
Design/Logic Flaw
2020-01-21 23:15:00
cbl_mariner
cbl_mariner
CVE-2019-20388 affecting package libxml2 2.9.10-4
2020-10-08 18:09:52
CVE-2020-7595 affecting package libxml2 2.9.10-4
2020-10-08 18:09:52
nvd
nvd
alpinelinux
alpinelinux
cve
cve
ubuntucve
ubuntucve
debiancve
debiancve
redhatcve
redhatcve
f5
f5
K04460334 : libxml2 2.9.10 vulnerability CVE-2020-7595
2021-04-16 00:00:00
rubygems
rubygems
libxml2 2.9.10 has an infinite loop in a certain end-of-file situation
2020-02-11 21:00:00
github
github
libxml as used in Nokogiri has an infinite loop in a certain end-of-file situation
2020-02-24 19:12:36
Nokogiri updates packaged dependency on libxml2 from 2.9.10 to 2.9.12
2021-05-17 20:52:05
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-3516, CVE-2021-3537, CVE-2017-8872, CVE-2021-3518, CVE-2019-20388, CVE-2020-24977, CVE-2021-3541, CVE-2021-3517
2021-12-28 13:15:15
Fix of 8 CVEs
2022-01-11 12:18:56