SUSE-SU-2021:14729-1 -- SLES libxml2ID: oval:org.secpod.oval:def:89044322 | Date: (C)2021-05-28 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for libxml2 fixes the following issues: Security issues fixed: - CVE-2021-3537: NULL pointer dereference in valid.c:xmlValidBuildAContentModel - CVE-2021-3518: Fixed a use after free in xinclude.c:xmlXIncludeDoProcess . - CVE-2021-3517: Fixed a heap based buffer overflow in entities.c:xmlEncodeEntitiesInternal . - CVE-2021-3516: Fixed a use after free in xmlEncodeEntitiesInternal in entities.c - CVE-2020-24977: Fixed a global-buffer-overflow in xmlEncodeEntitiesInternal . - CVE-2019-20388: Fixed a memory leak in xmlSchemaPreRun . - CVE-2020-7595: Fixed an infinite loop in an EOF situation . - CVE-2019-19956: Fixed a memory leak in xmlParseBalancedChunkMemoryRecover .
Platform: |
SUSE Linux Enterprise Server 11 SP4 |