14 lines
877 B
JSON
14 lines
877 B
JSON
{
|
|
"id": "openEuler-SA-2024-1183",
|
|
"url": "https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2024-1183",
|
|
"title": "An update for libxml2 is now available for openEuler-20.03-LTS-SP1,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS,openEuler-22.03-LTS-SP1,openEuler-22.03-LTS-SP2 and openEuler-22.03-LTS-SP3",
|
|
"severity": "Important",
|
|
"description": "Library providing XML and HTML support.\r\n\r\nSecurity Fix(es):\r\n\r\nAn issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free.(CVE-2024-25062)",
|
|
"cves": [
|
|
{
|
|
"id": "CVE-2024-25062",
|
|
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-25062",
|
|
"severity": "Important"
|
|
}
|
|
]
|
|
} |