Advisories » MGASA-2022-0331

Updated python-lxml packages fix security vulnerability

Publication date: 16 Sep 2022
Modification date: 16 Sep 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-2309

Description

NULL pointer dereference due to state leak between parser runs
(CVE-2022-2309)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=30772
• https://lists.suse.com/pipermail/sle-security-updates/2022-August/011973.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2309

SRPMS

8/core

• python-lxml-4.9.1-1.mga8