CLSA-2025-1753298604

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2025-1753298604.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2025-1753298604
Upstream
Published
2025-07-23T19:23:29Z
Modified
2026-06-04T09:47:30.597353715Z
Summary
Fix CVE(s): CVE-2025-49794, CVE-2025-49796
Details
  • SECURITY UPDATE: memory vulnerabilities in schematron
    • debian/patches/CVE-2025-49794_CVE-2025-49796.patch: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements and memory corruption issue triggered by processing sch:name elements in input XML file
    • CVE-2025-49794
    • CVE-2025-49796
References

Affected packages

TuxCare:Ubuntu:20.04
libxml2

Package

Name
libxml2
Purl
pkg:deb/tuxcare/libxml2?distro=ubuntu-20.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2025-1753298604.json"
libxml2-dev

Package

Name
libxml2-dev
Purl
pkg:deb/tuxcare/libxml2-dev?distro=ubuntu-20.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2025-1753298604.json"
libxml2-doc

Package

Name
libxml2-doc
Purl
pkg:deb/tuxcare/libxml2-doc?distro=ubuntu-20.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2025-1753298604.json"
libxml2-utils

Package

Name
libxml2-utils
Purl
pkg:deb/tuxcare/libxml2-utils?distro=ubuntu-20.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2025-1753298604.json"
python-libxml2

Package

Name
python-libxml2
Purl
pkg:deb/tuxcare/python-libxml2?distro=ubuntu-20.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2025-1753298604.json"
python3-libxml2

Package

Name
python3-libxml2
Purl
pkg:deb/tuxcare/python3-libxml2?distro=ubuntu-20.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.9.10+dfsg-5ubuntu0.20.04.10+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2025-1753298604.json"