Alerts This Week
Warning Icon 1 717
Alerts This Week
Warning Icon 1 717

SUSE: libxml2 Moderate Infinite Recursion Fix CVE-2025-8732 2025:4116-1

suse
Calendar Grey November 17, 2025
Dist Suse Esm H88
Explore the SUSE advisory for libxml2 addressing moderate security risks and recent exploits with updates available.
* bsc#1247850 * bsc#1249076 Cross-References: * CVE-2025-8732

Summary

## This update for libxml2 fixes the following issues: * CVE-2025-9714: Fixed inifinite recursion at exsltDynMapFunction function in libexslt/dynamic.c (bsc#1249076) * CVE-2025-8732: Fixed infinite recursion in catalog parsing functions when processing malformed SGML catalog files (bsc#1247850) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-4116=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-4116=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-4116=1 * SUSE Linux Enterprise Micro for Rancher 5.4

Topics%20covered

Topics Covered

security advisory moderate buffer overflow SuSE libxml2 infinite recursion

References

* bsc#1247850

* bsc#1249076

Cross-

* CVE-2025-8732

* CVE-2025-9714

CVSS scores:

* CVE-2025-8732 ( SUSE ): 4.8

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

* CVE-2025-8732 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

* CVE-2025-8732 ( NVD ): 1.9

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

* CVE-2025-8732 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

* CVE-2025-9714 ( SUSE ): 6.9

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2025-9714 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Announcement ID: SUSE-SU-2025:4116-1
Release Date: 2025-11-17T07:26:18Z
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate buffer overflow SuSE libxml2 infinite recursion

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here