SUSE-SU-2023:2048-1 -- SLES libxml2, python3-libxml2-python, python-libxml2-python-debugsource, python2-libxml2-pythonID: oval:org.secpod.oval:def:89048764 | Date: (C)2023-06-02 (M)2024-05-23 |
Class: PATCH | Family: unix |
This update for libxml2 fixes the following issues: * CVE-2023-29469: Fixed inconsistent result when hashing empty strings . * CVE-2023-28484: Fixed NULL pointer dereference in xmlSchemaFixupComplexType . * CVE-2022-29824: Fixed integer overflow leading to out-of-bounds write in buf.c . The following non-security bugs were fixed: * Added W3C conformance tests to the testsuite . * Fixed NULL pointer dereference when parsing invalid data .
Platform: |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP3 |
SUSE Linux Enterprise Server 15 SP1 |
Product: |
libxml2 |
python3-libxml2-python |
python-libxml2-python-debugsource |
python2-libxml2-python |