CLSA-2026-1775731413

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json

JSON Data

https://api.test.osv.dev/v1/vulns/CLSA-2026-1775731413

Upstream

CVE-2023-45322

CVE-2024-34459

CVE-2025-6170

CVE-2025-8732

CVE-2026-0989

CVE-2026-0990

CVE-2026-0992

CVE-2026-1757

Published

2026-04-09T10:43:37Z

Modified

2026-05-27T11:18:08.629916797Z

Summary

libxml2: Fix of 8 CVEs

Details

CVE-2023-45322: fix use-after-free in xmlStaticCopyNodeList when copying DTDs
CVE-2024-34459: fix buffer over-read in xmlHTMLPrintFileContext in xmllint
CVE-2025-6170: fix potential buffer overflows in xmllint interactive shell
CVE-2025-8732: fix stack overflow from self-referencing SGML CATALOG entries
CVE-2026-0989: add RelaxNG include recursion limit
CVE-2026-0990: prevent infinite recursion in xmlCatalogListXMLResolveURI
CVE-2026-0992: ignore repeated nextCatalog entries in XML catalog parsing
CVE-2026-1757: fix memory leak in xmllint interactive shell

References

https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2026-1775731413.html

Affected packages

TuxCare:AlmaLinux:9.6 / libxml2

Package

Name: libxml2
Purl: pkg:rpm/tuxcare/libxml2?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.13-12.el9_6.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json"

TuxCare:AlmaLinux:9.6 / libxml2-devel

Package

Name: libxml2-devel
Purl: pkg:rpm/tuxcare/libxml2-devel?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.13-12.el9_6.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json"

TuxCare:AlmaLinux:9.6 / libxml2-static

Package

Name: libxml2-static
Purl: pkg:rpm/tuxcare/libxml2-static?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.13-12.el9_6.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json"

TuxCare:AlmaLinux:9.6 / python3-libxml2

Package

Name: python3-libxml2
Purl: pkg:rpm/tuxcare/python3-libxml2?distro=almalinux-9.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.13-12.el9_6.tuxcare.els3

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json"