CLSA-2023-1682593947

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1682593947.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2023-1682593947

Upstream

CVE-2023-28484

CVE-2023-29469

Published

2023-04-27T11:12:34Z

Modified

2026-06-04T10:03:32.018408356Z

Summary

Fix CVE(s): CVE-2023-29469, CVE-2023-28484

Details

SECURITY UPDATE: Null dereference
- debian/patches/CVE-2023-28484.patch: Fix null-pointer-deref in xmlSchemaFixupComplexType
- CVE-2023-28484
SECURITY UPDATE: Fix a null pointer dereference
- debian/patches/fix-null-ptr-deref.patch: use XMLSCHEMASANYTYPE instead of a null pointer
- CVE-2023-28484
SECURITY UPDATE: Logic or memory errors
- debian/patches/CVE-2023-29469.patch: check whether namelen is less than or equal to zero
- CVE-2023-29469
Add test suite
- debian/patches/enable-building-tests.patch: enable building tests
- debian/patches/fix-testapi.patch: fix buffer overflow in tests

References

https://errata.cloudlinux.com/ubuntu16_04-els/CLSA-2023-1682593947

Affected packages

TuxCare:Ubuntu:16.04 / libxml2

Package

Name: libxml2
Purl: pkg:deb/tuxcare/libxml2?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.3+dfsg1-1ubuntu0.7+tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1682593947.json"

TuxCare:Ubuntu:16.04 / libxml2-dev

Package

Name: libxml2-dev
Purl: pkg:deb/tuxcare/libxml2-dev?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.3+dfsg1-1ubuntu0.7+tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1682593947.json"

TuxCare:Ubuntu:16.04 / libxml2-doc

Package

Name: libxml2-doc
Purl: pkg:deb/tuxcare/libxml2-doc?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.3+dfsg1-1ubuntu0.7+tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1682593947.json"

TuxCare:Ubuntu:16.04 / libxml2-utils

Package

Name: libxml2-utils
Purl: pkg:deb/tuxcare/libxml2-utils?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.3+dfsg1-1ubuntu0.7+tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1682593947.json"

TuxCare:Ubuntu:16.04 / python-libxml2

Package

Name: python-libxml2
Purl: pkg:deb/tuxcare/python-libxml2?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.3+dfsg1-1ubuntu0.7+tuxcare.els6

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2023-1682593947.json"