[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#1109440: unblock: libxml2/2.12.7+dfsg+really2.9.14-2



Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock
Control: affects -1 + src:libxml2

Dear release team,

I would like to apply two patches for libxml2 fixing 3 CVEs:
 - CVE-2025-6021: integer overflow in xmlBuildQName() (Closes: #1107720)
 - CVE-2025-{49794,49796}: use after free and type confusion in
xmlSchematronReportOutput() (Closes: #1107755)


Regards,
Aron

Attachment: libxml2_2.12.7+dfsg+really2.9.14-2.debdiff
Description: Binary data


Reply to: