[Oraclevm-errata] OVMSA-2009-0018 Moderate: Oracle VM 2.1 libxml2 security update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Fri Aug 14 09:16:59 PDT 2009
Oracle VM Security Advisory OVMSA-2009-0018
The following updated rpms for Oracle VM 2.1 have been uploaded to the
Unbreakable Linux Network:
i386:
libxml2-2.6.26-2.1.2.8.0.2.i386.rpm
libxml2-python-2.6.26-2.1.2.8.0.2.i386.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/SRPMS-updates/libxml2-2.6.26-2.1.2.8.0.2.src.rpm
Description of changes:
[2.6.26-2.1.2.8.0.2]
- Add bug347316.patch to backport fix for bug#347316
(http://bugzilla.gnome.org/show_bug.cgi?id=347316) from upstream version
(http://svn.gnome.org/viewvc/libxml2/trunk/xmlschemas.c?r1=3470&r2=3503)
[2.6.26-2.1.2.8.0.1]
- Add libxml2-enterprise.patch and update logos in tarball
[2.6.26-2.1.2.8]
- Fix a couple of crash CVE-2009-2414 and CVE-2009-2416
- Resolves: rhbz#515236
[2.6.26-2.1.2.7]
- two patches for size overflows problems CVE-2008-4225 and CVE-2008-4226
- Resolves: rhbz#470474
[2.6.26-2.1.2.6]
- Patch to fix an entity name copy buffer overflow CVE-2008-3529
- Resolves: rhbz#461023
[2.6.26-2.1.2.5]
- Better fix for CVE-2008-3281
- Resolves: rhbz#458095
[2.6.26-2.1.2.4]
- change the patch for CVE-2008-3281 due to ABI issues
- Resolves: rhbz#458095
[2.6.26-2.1.2.3]
- Patch to fix recursive entities handling CVE-2008-3281
- Resolves: rhbz#458095
[2.6.26-2.1.2.1]
- Patch to fix UTF-8 decoding problem CVE-2007-6284
- Resolves: rhbz#425933
More information about the Oraclevm-errata
mailing list