CLSA-2022-1670521677

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1670521677.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2022-1670521677
Upstream
Published
2022-12-08T17:47:57Z
Modified
2026-06-01T00:32:17.950080922Z
Summary
libxml2: Fix of 2 CVEs
Details
  • CVE-2022-40303: fix integer overflows with XMLPARSEHUGE
  • CVE-2022-40304: fix dict corruption caused by entity reference cycles
References

Affected packages

TuxCare:CentOS:6 / libxml2

Package

Name
libxml2
Purl
pkg:rpm/tuxcare/libxml2?distro=centos-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.7.6-21.el6_8.1.tuxcare.els3

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1670521677.json"

TuxCare:CentOS:6 / libxml2-devel

Package

Name
libxml2-devel
Purl
pkg:rpm/tuxcare/libxml2-devel?distro=centos-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.7.6-21.el6_8.1.tuxcare.els3

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1670521677.json"

TuxCare:CentOS:6 / libxml2-python

Package

Name
libxml2-python
Purl
pkg:rpm/tuxcare/libxml2-python?distro=centos-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.7.6-21.el6_8.1.tuxcare.els3

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1670521677.json"

TuxCare:CentOS:6 / libxml2-static

Package

Name
libxml2-static
Purl
pkg:rpm/tuxcare/libxml2-static?distro=centos-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.7.6-21.el6_8.1.tuxcare.els3

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos6els/CLSA-2022-1670521677.json"