Debian Bug report logs -
#1022225
libxml2: CVE-2022-40304: dict corruption caused by entity reference cycles
Package:
src:libxml2;
Maintainer for src:libxml2 is Debian XML/SGML Group <debian-xml-sgml-pkgs@listsaliothdebianorg>;
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Sat, 22 Oct 2022 10:03:02 UT ...
Several security issues were fixed in libxml2 ...
Several security issues were fixed in libxml2 ...
Several vulnerabilities were discovered in libxml2, a library providing
support to read, modify and write XML and HTML files
CVE-2022-40303
Maddie Stone discovered that missing safety checks in several
functions can result in integer overflows when parsing a XML
document with the XML_PARSE_HUGE option enabled
CVE-2022-40304
Ned W ...
An issue was discovered in libxml2 before 2103 When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault (CVE-2022-40303)
An issue was discovered in libxml2 befo ...
parserc in libxml2 before 295 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name (CVE-2017-16931)
GNOME project libxml2 v2910 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entitiesc The issue has been ...
Description<!----> This CVE is under investigation by Red Hat Product Security ...
Synopsis
Moderate: Red Hat OpenShift (Logging Subsystem) security update
Type/Severity
Security Advisory: Moderate
Topic
Logging Subsystem 557 - Red Hat OpenShift
Description
Logging Subsystem 557 - Red Hat OpenShift
Solution
Before applying this update, make sure all previously released erratarelevant to your system have been applied ...
Synopsis
Moderate: libxml2 security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for libxml2 is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Security has rated ...
Synopsis
Moderate: Red Hat OpenShift Service Mesh Containers for 232 security update
Type/Severity
Security Advisory: Moderate
Topic
Red Hat OpenShift Service Mesh Containers for 232Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a ...
概要
Important: Red Hat Advanced Cluster Management 270 security and bug fix updates
タイプ/重大度
Security Advisory: Important
トピック
Red Hat Advanced Cluster Management for Kubernetes 270 GeneralAvailability release images, which provide security updates and fix bugsRed Hat Product Security has rated this update as having ...
Synopsis
Important: Red Hat OpenShift GitOps security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift GitOps 15Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sever ...
Synopsis
Moderate: Migration Toolkit for Containers (MTC) 177 security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
The Migration Toolkit for Containers (MTC) 177 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base ...
Synopsis
Important: Self Node Remediation Operator 051 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Self Node Remediation Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Commo ...
Synopsis
Important: Red Hat OpenShift GitOps security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift GitOps 159Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed seve ...
Synopsis
Important: Red Hat OpenShift GitOps security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift GitOps 17Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sever ...
Synopsis
Important: Red Hat OpenShift GitOps security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift GitOps 16Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sever ...
Synopsis
Moderate: libxml2 security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for libxml2 is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a se ...
Synopsis
Important: Migration Toolkit for Runtimes security bug fix and enhancement update
Type/Severity
Security Advisory: Important
Topic
Migration Toolkit for Runtimes 102 releaseRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a ...
Synopsis
Important: Red Hat OpenShift GitOps security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift GitOps 17Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sever ...
Synopsis
Moderate: libxml2 security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for libxml2 is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as having a se ...
Synopsis
Important: Red Hat OpenShift GitOps security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift GitOps 164Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed seve ...
Synopsis
Moderate: Red Hat OpenStack Platform 162 (osp-director-downloader-container, osp-director-agent-container and osp-director-operator-container) security update
Type/Severity
Security Advisory: Moderate
Topic
An update for osp-director-downloader-container,osp-director-agent-container and osp-director-operator-container is nowavailabl ...
Synopsis
Important: Red Hat OpenShift Data Science 1221 security update
Type/Severity
Security Advisory: Important
Topic
An update for kubeflow, dashboard, deployer is now available for Red Hat OpenShift Data Science 122Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Moderate: Release of OpenShift Serverless 1271
Type/Severity
Security Advisory: Moderate
Topic
OpenShift Serverless version 1271 contains a moderate security impactThe References section contains CVE links providing detailed severity ratingsfor each vulnerability Ratings are based on a Common Vulnerability ScoringSystem (CVSS) ...
Synopsis
Moderate: Red Hat OpenShift (Logging Subsystem) security update
Type/Severity
Security Advisory: Moderate
Topic
Logging Subsystem 561 - Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rat ...
Synopsis
Moderate: Red Hat Advanced Cluster Management 264 bug fixes and security updates
Type/Severity
Security Advisory: Moderate
Topic
Red Hat Advanced Cluster Management for Kubernetes 264 GeneralAvailability release images, which fix bugs and update container imagesRed Hat Product Security has rated this update as having a security ...
Synopsis
Moderate: Red Hat OpenShift (Logging Subsystem) security update
Type/Severity
Security Advisory: Moderate
Topic
An update is now available for the Logging subsystem for Red Hat OpenShift 54Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, ...
Synopsis
Moderate: OpenShift API for Data Protection (OADP) 112 security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
OpenShift API for Data Protection (OADP) 112 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base ...
Synopsis
Moderate: RHSA: Submariner 014 - bug fix and security updates
Type/Severity
Security Advisory: Moderate
Topic
Submariner 014 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 27Red Hat Product Security has rated this update as having a ...
Synopsis
Moderate: RHSA: Submariner 0133 - security updates and bug fixes
Type/Severity
Security Advisory: Moderate
Topic
Submariner 0133 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 26Red Hat Product Security has rated this update as hav ...
Synopsis
Important: Network observability 110 security update
Type/Severity
Security Advisory: Important
Topic
Network observability 110 release for OpenShiftRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rati ...
Synopsis
Moderate: Service Binding Operator security update
Type/Severity
Security Advisory: Moderate
Topic
An update for service-binding-operator-bundle-container and service-binding-operator-container is now available for OpenShift Developer Tools and Services for OCP 49Red Hat Product Security has rated this update as having a security i ...
Synopsis
Moderate: Release of OpenShift Serverless 1270
Type/Severity
Security Advisory: Moderate
Topic
Release of OpenShift Serverless 1270The References section contains CVE links providing detailed severity ratingsfor each vulnerability Ratings are based on a Common Vulnerability ScoringSystem (CVSS) base score
Description
Version ...
Synopsis
Moderate: OpenShift sandboxed containers 141 security update
Type/Severity
Security Advisory: Moderate
Topic
OpenShift sandboxed containers 141 is now availableRed Hat Product Security has rated this update as having a security impactof Moderate A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed seve ...
Synopsis
Important: Migration Toolkit for Applications security and bug fix update
Type/Severity
Security Advisory: Important
Topic
Migration Toolkit for Applications 601 releaseRed Hat Product Security has rated this update as having a security impactof Important A Common Vulnerability Scoring System (CVSS) base score, whichgives a detail ...
Synopsis
Moderate: Secondary Scheduler Operator for Red Hat OpenShift 111 security update
Type/Severity
Security Advisory: Moderate
Topic
Secondary Scheduler Operator for Red Hat OpenShift 111Red Hat Product Security has rated this update as having a security impact ofModerate A Common Vulnerability Scoring System (CVSS) base score, whic ...
Synopsis
Important: Red Hat Single Sign-On 762 for OpenShift image security and enhancement update
Type/Severity
Security Advisory: Important
Topic
A new image is available for Red Hat Single Sign-On 762, running on RedHat OpenShift Container Platform from the release of 311 up to the releaseof 4120Red Hat Product Security has rated t ...
Synopsis
Important: Red Hat OpenShift Data Foundation 4130 security and bug fix update
Type/Severity
Security Advisory: Important
Topic
Updated images that include numerous enhancements, security, and bug fixes are now available in Red Hat Container Registry for Red Hat OpenShift Data Foundation 4130 on Red Hat Enterprise Linux 9Red Hat ...
Synopsis
Important: OpenShift Container Platform 4132 bug fix and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 4132 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift C ...
Synopsis
Important: Red Hat JBoss Core Services Apache HTTP Server 2451 SP1 security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat JBoss Core ServicesRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base sco ...
ALAS-2022-257
Amazon Linux 2022 Security Advisory: ALAS-2022-257
Advisory Release Date: 2022-12-06 16:45 Pacific
...
ALAS-2022-258
Amazon Linux 2022 Security Advisory: ALAS-2022-258
Advisory Release Date: 2022-12-06 16:45 Pacific
...