SUSE-SU-2023:3665-1 -- SLES libxml2, python-libxml2| ID: oval:org.secpod.oval:def:89049381 | Date: (C)2023-11-14 (M)2024-05-23 |
| Class: PATCH | Family: unix |
This update for libxml2 fixes the following issues: * CVE-2023-29469: Fixed not deterministic hashing of empty dict strings . * CVE-2023-28484: Fixed NULL dereference in xmlSchemaFixupComplexType . * CVE-2023-39615: Fixed crafted xml can cause global buffer overflow . * CVE-2016-3709: Fixed cross-site scripting vulnerability in libxml .
| Platform: |
| SUSE Linux Enterprise Server 12 SP5 |
| Product: |
| libxml2 |
| python-libxml2 |
