Updated libxml2 packages fix a security vulnerability
Publication date: 22 Oct 2023Modification date: 22 Oct 2023
Type: security
Affected Mageia releases : 8 , 9
CVE: CVE-2023-45322
Description
libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. (CVE-2023-45322)
References
SRPMS
8/core
- libxml2-2.9.10-7.9.mga8
9/core
- libxml2-2.10.4-1.2.mga9