ALSA-2021:1597

[ALSA-2021:1597] Moderate: libxml2 security update

Type:

security

Severity:

moderate

Release date:

2021-05-18

Description:

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

* libxml2: Buffer overflow vulnerability in xmlEncodeEntitiesInternal() in entities.c (CVE-2020-24977)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

CVE-2020-24977

Updated packages:

libxml2-2.9.7-9.el8.i686.rpm
libxml2-2.9.7-9.el8.x86_64.rpm
libxml2-devel-2.9.7-9.el8.i686.rpm
libxml2-devel-2.9.7-9.el8.x86_64.rpm
python3-libxml2-2.9.7-9.el8.x86_64.rpm

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.