CLSA-2025-1757413554

Import Source

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2025-1757413554

Upstream

Published

2025-09-09T10:25:58Z

Modified

2026-06-01T00:33:27.587911851Z

Summary

libxml2: Fix of 2 CVEs

Details

CVE-2025-7425: fix heap-use-after-free in xmlFreeID caused by 'atype' corruption
CVE-2025-6021: fix integer overflows in buffer size calculations

References

Affected packages

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.1-6.0.3.el7_9.6.tuxcare.els7

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/rhel7els/CLSA-2025-1757413554.json"

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.1-6.0.3.el7_9.6.tuxcare.els7

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/rhel7els/CLSA-2025-1757413554.json"

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.1-6.0.3.el7_9.6.tuxcare.els7

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/rhel7els/CLSA-2025-1757413554.json"

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.9.1-6.0.3.el7_9.6.tuxcare.els7

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/rhel7els/CLSA-2025-1757413554.json"