[El-errata] ELSA-2014-1885 Moderate: Oracle Linux 5 libxml2 security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Thu Nov 20 18:04:53 PST 2014
Oracle Linux Security Advisory ELSA-2014-1885
https://rhn.redhat.com/errata/RHSA-2014-1885.html
The following updated rpms for Oracle Linux 5 have been uploaded to the
Unbreakable Linux Network:
i386:
libxml2-2.6.26-2.1.25.0.1.el5_11.i386.rpm
libxml2-devel-2.6.26-2.1.25.0.1.el5_11.i386.rpm
libxml2-python-2.6.26-2.1.25.0.1.el5_11.i386.rpm
x86_64:
libxml2-2.6.26-2.1.25.0.1.el5_11.i386.rpm
libxml2-2.6.26-2.1.25.0.1.el5_11.x86_64.rpm
libxml2-devel-2.6.26-2.1.25.0.1.el5_11.i386.rpm
libxml2-devel-2.6.26-2.1.25.0.1.el5_11.x86_64.rpm
libxml2-python-2.6.26-2.1.25.0.1.el5_11.x86_64.rpm
ia64:
libxml2-2.6.26-2.1.25.0.1.el5_11.i386.rpm
libxml2-2.6.26-2.1.25.0.1.el5_11.ia64.rpm
libxml2-devel-2.6.26-2.1.25.0.1.el5_11.ia64.rpm
libxml2-python-2.6.26-2.1.25.0.1.el5_11.ia64.rpmel-er
SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/libxml2-2.6.26-2.1.25.0.1.el5_11.src.rpm
Description of changes:
[2.6.26-2.1.25.0.1.el5_11]
- Add libxml2-enterprise.patch
- Replaced doc/redhat.gif in tarball with updated image
[2.6.26-2.1.25.el5]
- CVE-2014-3660 denial of service via recursive entity expansion
(rhbz#1161841)
[2.6.26-2.1.24.el5]
- fixed one regexp bug and added a (rhbz#922450)
- Another small change on the algorithm for the elimination of epsilon
(rhbz#922450)
[2.6.26-2.1.23.el5]
- detect and stop excessive entities expansion upon replacement
(rhbz#912573)
[2.6.26-2.1.22.el5]
- fix validation issues with some XSD (rhbz#877348)
- xmlDOMWrapCloneNode discards namespace of the node parameter (rhbz#884707)
More information about the El-errata
mailing list