{"id":"CLSA-2026-1775731413","summary":"libxml2: Fix of 8 CVEs","details":"- CVE-2023-45322: fix use-after-free in xmlStaticCopyNodeList when copying DTDs\n- CVE-2024-34459: fix buffer over-read in xmlHTMLPrintFileContext in xmllint\n- CVE-2025-6170: fix potential buffer overflows in xmllint interactive shell\n- CVE-2025-8732: fix stack overflow from self-referencing SGML CATALOG entries\n- CVE-2026-0989: add RelaxNG include recursion limit\n- CVE-2026-0990: prevent infinite recursion in xmlCatalogListXMLResolveURI\n- CVE-2026-0992: ignore repeated nextCatalog entries in XML catalog parsing\n- CVE-2026-1757: fix memory leak in xmllint interactive shell","modified":"2026-05-27T11:18:08.629916797Z","published":"2026-04-09T10:43:37Z","upstream":["CVE-2023-45322","CVE-2024-34459","CVE-2025-6170","CVE-2025-8732","CVE-2026-0989","CVE-2026-0990","CVE-2026-0992","CVE-2026-1757"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/tuxcare9.6esu/CLSA-2026-1775731413.html"}],"affected":[{"package":{"name":"libxml2","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/libxml2?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.9.13-12.el9_6.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json"}},{"package":{"name":"libxml2-devel","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/libxml2-devel?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.9.13-12.el9_6.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json"}},{"package":{"name":"libxml2-static","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/libxml2-static?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.9.13-12.el9_6.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json"}},{"package":{"name":"python3-libxml2","ecosystem":"TuxCare:AlmaLinux:9.6","purl":"pkg:rpm/tuxcare/python3-libxml2?distro=almalinux-9.6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.9.13-12.el9_6.tuxcare.els3"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1775731413.json"}}],"schema_version":"1.7.5"}