Oval Definition:	oval:com.redhat.rhsa:def:20130581
Revision Date: 2013-02-28 Version: 636 Title: RHSA-2013:0581: libxml2 security update (Moderate) Description: The libxml2 library is a development toolbox providing the implementation of various XML standards. A denial of service flaw was found in the way libxml2 performed string substitutions when entity values for entity references replacement was enabled. A remote attacker could provide a specially-crafted XML file that, when processed by an application linked against libxml2, would lead to excessive CPU consumption. (CVE-2013-0338) All users of libxml2 are advised to upgrade to these updated packages, which contain a backported patch to correct this issue. The desktop must be restarted (log out, then log back in) for this update to take effect. Family: unix Class: patch Status: Reference(s): CVE-2013-0338 CVE-2013-0338 RHSA-2013:0581 RHSA-2013:0581-01 RHSA-2013:0581-01 Platform(s): Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6 Product(s): Definition Synopsis Red Hat Enterprise Linux must be installed OR Package Information Red Hat Enterprise Linux 5 is installed AND libxml2 is earlier than 0:2.6.26-2.1.21.el5_9.1 AND libxml2 is signed with Red Hat redhatrelease2 key libxml2-devel is earlier than 0:2.6.26-2.1.21.el5_9.1 AND libxml2-devel is signed with Red Hat redhatrelease2 key libxml2-python is earlier than 0:2.6.26-2.1.21.el5_9.1 AND libxml2-python is signed with Red Hat redhatrelease2 key OR Package Information Red Hat Enterprise Linux 6 is installed AND libxml2 is earlier than 0:2.7.6-12.el6_4.1 AND libxml2 is signed with Red Hat redhatrelease2 key libxml2-devel is earlier than 0:2.7.6-12.el6_4.1 AND libxml2-devel is signed with Red Hat redhatrelease2 key libxml2-python is earlier than 0:2.7.6-12.el6_4.1 AND libxml2-python is signed with Red Hat redhatrelease2 key libxml2-static is earlier than 0:2.7.6-12.el6_4.1 AND libxml2-static is signed with Red Hat redhatrelease2 key
BACK