Slackware: 2017-266-01 Urgent Security Risk with Libxml2 Vulnerability

slackware

September 23, 2017

New libxml2 packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues

Summary

Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libxml2-2.9.5-i586-1_slack14.2.txz: Upgraded. This release fixes some security issues: Detect infinite recursion in parameter entities (Nick Wellnhofer), Fix handling of parameter-entity references (Nick Wellnhofer), Disallow namespace nodes in XPointer ranges (Nick Wellnhofer), Fix XPointer paths beginning with range-to (Nick Wellnhofer). (* Security fix *)

Topics Covered

security advisory security update critical slackware libxml2 package

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 14.0:
Updated package for Slackware x86_64 14.0:
Updated package for Slackware 14.1:
Updated package for Slackware x86_64 14.1:
Updated package for Slackware 14.2:
Updated package for Slackware x86_64 14.2:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 14.0 package: d34e4c3be3d1e29ff6b5dc5a250048bf libxml2-2.9.5-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: 74a219bdfb32feea365333d8f895b8f8 libxml2-2.9.5-x86_64-1_slack14.0.txz
Slackware 14.1 package: 07bdea8de0773974a9aad289b9aea3b5 libxml2-2.9.5-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: 6c8c68b5dfb023f6231f485fa16f86b2 libxml2-2.9.5-x86_64-1_slack14.1.txz
Slackware 14.2 package: 412befce9b44307ac35c779b50c43cb3 libxml2-2.9.5-i586-1_slack14.2.txz
Slackware x86_64 14.2 package: b9a85f45155194ed8c4202353393d57b libxml2-2.9.5-x86_64-1_slack14.2.txz
Slackware -current package: a21bbe336bfd526af48d9e9f6a00a375 l/libxml2-2.9.5-i586-1.txz
Slackware x86_64 -current package: b3d312e65c5c2e695ca649a1aeeebc1d l/libxml2-2.9.5-x86_64-1.txz

Severity

critical

Lowest

Low

Medium

High

Critical

Topics Covered

security advisory security update critical slackware libxml2 package

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg libxml2-2.9.5-i586-1_slack14.2.txz

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Slackware: 2017-266-01 Urgent Security Risk with Libxml2 Vulnerability

Summary

Topics Covered

Where Find New Packages

MD5 Signatures

Topics Covered

Get the latest News and Insights

Installation Instructions

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Slackware: 2017-266-01 Urgent Security Risk with Libxml2 Vulnerability

Summary

Topics Covered

Where Find New Packages

MD5 Signatures

Topics Covered

Get the latest News and Insights

Installation Instructions

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!