Mageia 9: MGASA-2025-0073 moderate: libxml2 use-after-free & overflow

mageia

February 25, 2025

The updated packages fix security vulnerabilities: Use-after-free in xmlSchemaIDCFillNodeTables

Summary

The updated packages fix security vulnerabilities: Use-after-free in xmlSchemaIDCFillNodeTables. (CVE-2024-56171) Stack-buffer-overflow in xmlSnprintfElements. (CVE-2025-24928) Null-deref in xmlPatMatch. (CVE-2025-27113)

References

- https://bugs.mageia.org/show_bug.cgi?id=34037

- https://openwall.com/lists/oss-security/2025/02/18/2

- https://www.cve.org/CVERecord?id=CVE-2024-56171

- https://www.cve.org/CVERecord?id=CVE-2025-24928

- https://www.cve.org/CVERecord?id=CVE-2025-27113

Topics Covered

security advisory software update stack overflow libxml2 use-after-free Mageia null dereference stack-overflow null-dereference

Resolution

SRPMS

- 9/core/libxml2-2.10.4-1.6.mga9

Publication date: 25 Feb 2025

URL: https://advisories.mageia.org/MGASA-2025-0073.html

Type: security

CVE: CVE-2024-56171, CVE-2025-24928, CVE-2025-27113

Topics Covered

security advisory software update stack overflow libxml2 use-after-free Mageia null dereference stack-overflow null-dereference

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 9: MGASA-2025-0073 moderate: libxml2 use-after-free & overflow

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 9: MGASA-2025-0073 moderate: libxml2 use-after-free & overflow

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!