[El-errata] ELSA-2014-1655 Moderate: Oracle Linux 6 libxml2 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Fri Oct 17 20:59:18 PDT 2014
Oracle Linux Security Advisory ELSA-2014-1655
https://rhn.redhat.com/errata/RHSA-2014-1655.html
The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:
i386:
libxml2-2.7.6-17.0.1.el6_6.1.i686.rpm
libxml2-devel-2.7.6-17.0.1.el6_6.1.i686.rpm
libxml2-python-2.7.6-17.0.1.el6_6.1.i686.rpm
libxml2-static-2.7.6-17.0.1.el6_6.1.i686.rpm
x86_64:
libxml2-2.7.6-17.0.1.el6_6.1.i686.rpm
libxml2-2.7.6-17.0.1.el6_6.1.x86_64.rpm
libxml2-devel-2.7.6-17.0.1.el6_6.1.i686.rpm
libxml2-devel-2.7.6-17.0.1.el6_6.1.x86_64.rpm
libxml2-python-2.7.6-17.0.1.el6_6.1.x86_64.rpm
libxml2-static-2.7.6-17.0.1.el6_6.1.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/libxml2-2.7.6-17.0.1.el6_6.1.src.rpm
Description of changes:
[2.7.6-17.0.1.el6_6.1]
- Update doc/redhat.gif in tarball
- Add libxml2-oracle-enterprise.patch and update logos in tarball
[libxml2-2.7.6-17.el6.1]
- CVE-2014-3660 denial of service via recursive entity expansion
(rhbz#1149085)
[libxml2-2.7.6-17.el6]
- Fix a set of regressions introduced in CVE-2014-0191 (rhbz#1105011)
[libxml2-2.7.6-16.el6]
- Improve handling of xmlStopParser(CVE-2013-2877)
[libxml2-2.7.6-15.el6]
- Do not fetch external parameter entities (CVE-2014-0191)
More information about the El-errata
mailing list