SUSE-SU-2023:3665-1 -- SLES libxml2, python-libxml2ID: oval:org.secpod.oval:def:89049381 | Date: (C)2023-11-14 (M)2024-05-23 |
Class: PATCH | Family: unix |
This update for libxml2 fixes the following issues: * CVE-2023-29469: Fixed not deterministic hashing of empty dict strings . * CVE-2023-28484: Fixed NULL dereference in xmlSchemaFixupComplexType . * CVE-2023-39615: Fixed crafted xml can cause global buffer overflow . * CVE-2016-3709: Fixed cross-site scripting vulnerability in libxml .
Platform: |
SUSE Linux Enterprise Server 12 SP5 |
Product: |
libxml2 |
python-libxml2 |