Stay Secure with the Latest Linux Advisories

security advisoryfedoraupdate

Fedora: 2004-087 Critical: Libxml2 Buffer Overflow Remote Threat

Updated libxml2 packages are available to fix an overflow when parsing the URI for remote resources.. Fedora Update Notification FEDORA-2004-087 2004-02-25 --------------------------------------------------------------------- Name : libxml2 Version : 2.6.6 Release : 3 Summary : Library providing XML and HTML support Description : This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream or and in-memory DOM like representations. In this case one can use the built-in XPath and XPointer implementation to select subnodes or ranges. A flexible Input/Output mechanism is available, with existing HTTP and FTP modules and combined to an URI library. --------------------------------------------------------------------- Update Information: Updated libxml2 packages are available to fix an overflow when parsing the URI for remote resources. --------------------------------------------------------------------- * Thu Feb 12 2004 Daniel Veillard - upstream release 2.6.6 see NEWS · master · GNOME / libxml2 · GitLab --------------------------------------------------------------------- This update can be downloaded from: c46c9ba42ba7d27bfcf48899119a1d40 SRPMS/libxml2-2.6.6-3.src.rpm d7a9dec974250e425d6052e0f648b6c5 i386/libxml2-2.6.6-3.i386.rpm 0758aa446c1a43d18bc016df35288806 i386/libxml2-devel-2.6.6-3.i386.rpm 07843af17c126497f4baa8d279c7d920 i386/libxml2-python-2.6.6-3.i386.rpm ae7105805216615e6460c60be9c679da i386/debug/libxml2-debuginfo-2.6.6-3.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- Daniel -- Daniel Veillard | Red Hat Network https://access.redhat.com This email address is being protected from spambots. You need JavaScript enabled to view it. |libxml GNOME XML XSLT toolkit Home · Wiki · GNOME / libxml2 · GitLab Daniel Veillard | Rpmfind RPM search engine Rpmfind mirror -- fedora-announce-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. fedora-announce-list Info Page . Recent updates for libxml2 launched to resolve a potential buffer overflow issue relating to URI processing of external resources within Fedora.. libxml2 update,Fedora security,buffer overflow fix,remote resource handling. . Severity: Critical. LinuxSecurity.com Team

Feb 26, 2004 •Critical Fedora