Release date:
2026-04-24 16:27:37 UTC
Description:
- Fix CVE-2017-7375: add validation for parsed entity references in xmlParsePEReference
- Fix CVE-2017-7376: fix buffer overflow in URL port handling
- Fix CVE-2024-25062: use-after-free in xmlreader with DTD validation and XInclude
Updated packages:
-
libxml2-2.9.1-6.amzn2.5.24.tuxcare.els1.x86_64.rpm
sha:32cf1e8552234e514f218bc1a6bb34091a459c1a31dfa1ea0ea99c8aad1c3a4d
-
libxml2-devel-2.9.1-6.amzn2.5.24.tuxcare.els1.x86_64.rpm
sha:46dc8501046bed76272af0567d8a5f9744cd5e203d23a9464f7e53de7cd9e75c
-
libxml2-python-2.9.1-6.amzn2.5.24.tuxcare.els1.x86_64.rpm
sha:63873442657c37a87d2257353397903f2b29d48133bf0a3687675561c26091af
-
libxml2-static-2.9.1-6.amzn2.5.24.tuxcare.els1.x86_64.rpm
sha:5bf4b306ef521be34ba4e27b233914c2b365ee7efe97b9a348cd7ada4dd9fefa
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
