rpms/libxml2
6
0
Fork 0
Code Issues Pull Requests Releases Activity
Library providing XML and HTML support
37 Commits 9 Branches 70 Tags 654 KiB
Diff 100%
79a011bc91
Go to file
RHEL Packaging Agent 79a011bc91 Fix CVE-2025-9714: XPath depth check with recursive invocations 
The patch fixes XPath depth check to work properly with recursive
invocations. EXSLT functions like dyn:map or dyn:evaluate invoke
xmlXPathRunEval recursively, which could lead to stack overflows.
The fix keeps and restores the original depth value instead of
resetting it to zero.

CVE: CVE-2025-9714
Upstream fix: 677a42645e.patch
Resolves: RHEL-119283

This commit was backported by Jotnar, a Red Hat Enterprise Linux software maintenance AI agent.

Assisted-by: Jotnar
2025-11-04 09:40:07 +00:00
.fmf metada prep for RHIVOS 2024-10-30 17:12:45 +00:00
.gitignore Update to 2.9.13 (#2057665) 2022-02-24 12:13:42 +00:00
gating.yaml enabling gating for el9 2021-06-16 13:38:02 +02:00
libxml2-2.9.8-python3-unicode-errors.patch RHEL 9.0.0 Alpha bootstrap 2020-10-15 18:10:15 +02:00
libxml2-2.9.13-CVE-2022-29824.patch Fix CVE-2022-29824 (#2082300) 2022-05-10 14:04:49 +01:00
libxml2-2.9.13-CVE-2022-40303.patch Fix CVE-2022-40303 (#2136564) 2022-11-01 23:43:38 +00:00
libxml2-2.9.13-CVE-2022-40304.patch Fix CVE-2022-40304 (#2136569) 2022-11-01 23:48:58 +00:00
libxml2-2.9.13-CVE-2022-49043.patch Fix CVE-2022-49043 (RHEL-76298) 2025-02-11 12:15:21 +00:00
libxml2-2.9.13-CVE-2023-28484.2.patch Fix CVE-2023-28484 (#2186694) 2023-04-14 10:17:55 +01:00
libxml2-2.9.13-CVE-2023-28484.patch Fix CVE-2023-28484 (#2186694) 2023-04-14 10:17:55 +01:00
libxml2-2.9.13-CVE-2023-29469.patch Fix CVE-2023-29469 (#2186694) 2023-04-14 11:23:10 +01:00
libxml2-2.9.13-CVE-2024-56171.patch Fix CVE-2024-56171 (RHEL-80127) 2025-02-25 10:54:39 +00:00
libxml2-2.9.13-CVE-2025-6021.patch Fix CVE-2025-6021 (RHEL-96507) 2025-07-02 16:43:38 +01:00
libxml2-2.9.13-CVE-2025-7425.patch Fix CVE-2025-7425 (RHEL-102806) 2025-07-30 17:42:20 +01:00
libxml2-2.9.13-CVE-2025-24928.patch Fix CVE-2025-24928 (RHEL-80142) 2025-02-26 08:44:35 +00:00
libxml2-2.9.13-CVE-2025-32414.patch Fix CVE-2025-32414 (RHEL-99873) 2025-08-05 20:41:42 +01:00
libxml2-2.9.13-CVE-2025-49794.patch Fix CVE-2025-49794 and CVE-2025-49796 2025-07-07 18:47:08 +01:00
libxml2-2.11.0-fix-CVE-2023-39615.patch Fix CVE-2023-39615 (RHEL-5180) 2023-09-20 16:40:02 +01:00
libxml2-2.11.6-CVE-2024-25062.patch Fix CVE-2024-25062 (RHEL-29196) 2024-04-29 09:13:47 +01:00
libxml2-2.12.5-CVE-2025-32415.patch Fix CVE-2025-32415 (RHEL-100182) 2025-08-05 19:28:02 +01:00
libxml2-multilib.patch Rebase to 2.9.12 (#1960623) 2021-05-21 12:32:14 +01:00
libxml2.spec Fix CVE-2025-9714: XPath depth check with recursive invocations 2025-11-04 09:40:07 +00:00
main.fmf Update main.fmf 2024-12-06 09:22:08 +00:00
RHEL-119283.patch Fix CVE-2025-9714: XPath depth check with recursive invocations 2025-11-04 09:40:07 +00:00
rpminspect.yaml Ignore badfuncs in library 2022-02-02 10:57:35 +00:00
sources Update to 2.9.13 (#2057665) 2022-02-24 12:13:42 +00:00