CentOS 6: CENTOS-2011-5678 Urgent OpenSSL Vulnerability Fix
fedora
August 15, 2009
This update includes patches from RHEL-3 addressing a number of security
vulnerabilities: - CVE-2004-0110 (arbitrary code execution via a long URL) -
CVE-2004-0989 (arbitrary ...
Summary
This library allows old Gnome-1 applications to manipulate XML files.
Update Information:
This update includes patches from RHEL-3 addressing a number of security vulnerabilities: - CVE-2004-0110 (arbitrary code execution via a long URL) - CVE-2004-0989 (arbitrary code execution via a long URL) - CVE-2009-2414 (stack consumption DoS vulnerabilities) - CVE-2009-2416 (use-after-free DoS vulnerabilities)
Change Log
* Wed Aug 12 2009 Paul Howarth
References
[ 1 ] Bug #430644 - CVE-2004-0110 libxml2 long URL causes SEGV
https://bugzilla.redhat.com/show_bug.cgi?id=430644
[ 2 ] Bug #430645 - CVE-2004-0989 libxml2 various overflows
https://bugzilla.redhat.com/show_bug.cgi?id=430645
[ 3 ] Bug #515195 - CVE-2009-2414 libxml, libxml2: Stack overflow by parsing root XML element DTD definition
https://bugzilla.redhat.com/show_bug.cgi?id=515195
[ 4 ] Bug #515205 - CVE-2009-2416 libxml, libxml2: Pointer use-after-free flaws by parsing Notation and Enumeration attribute types
https://bugzilla.redhat.com/show_bug.cgi?id=515205
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update libxml' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: libxml
Product: Fedora 11
Version: 1.8.17
Release: 24.fc11
Summary: Old XML library for Gnome-1 application compatibility
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!