https://bugzilla.redhat.com/show_bug.cgi?id=1281936 --- Comment #2 from Adam Mariš <amaris(a)redhat.com&gt; --- Created mingw-libxml2 tracking bugs for this issue: Affects: fedora-all [bug 1281938] Affects: epel-7 [bug 1281939] -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=wUqBfqC2MA&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1281936 --- Comment #3 from Adam Mariš <amaris(a)redhat.com&gt; --- Acknowledgments: Red Hat would like to thank GNOME project for reporting this issue. Upstream acknowledges Hugh Davenport as the original reporter. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=mrwBZi1Sqh&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1281936 Huzaifa S. Sidhpurwala <huzaifas(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- Blocks| |1274223 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=ikCekFwXZv&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1281936 Huzaifa S. Sidhpurwala <huzaifas(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- Depends On| |1286495 Depends On| |1286496 Depends On| |1286497 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=5z9mofkM05&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1281936 --- Comment #8 from errata-xmlrpc <errata-xmlrpc(a)redhat.com&gt; --- This issue has been addressed in the following products: Red Hat Enterprise Linux 6 Via RHSA-2015:2549 https://rhn.redhat.com/errata/RHSA-2015-2549.html -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=dZO21hG7jl&a=cc_unsubscribe

https://bugzilla.redhat.com/show_bug.cgi?id=1281936 Timothy Walsh <twalsh(a)redhat.com&gt; changed: What |Removed |Added ---------------------------------------------------------------------------- Whiteboard|impact=low,public=20151008, |impact=low,public=20151008, |reported=20151113,source=re |reported=20151113,source=re |dhat,cvss2=4.3/AV:N/AC:M/Au |dhat,cvss2=4.3/AV:N/AC:M/Au |:N/C:P/I:N/A:N,cwe=CWE-125, |:N/C:P/I:N/A:N,cwe=CWE-125, |rhel-5/libxml2=affected,rhe |rhel-5/libxml2=affected,rhe |l-6/libxml2=affected,rhel-7 |l-6/libxml2=affected,rhel-7 |/libxml2=affected,jboss/lib |/libxml2=affected,jboss/lib |xml2=affected,fedora-all/li |xml2=affected,jbews-2/libxm |bxml2=affected,fedora-all/m |l2=wontfix,jbews-3/libxml2= |ingw-libxml2=affected,epel- |affected,fedora-all/libxml2 |7/mingw-libxml2=affected |=affected,fedora-all/mingw- | |libxml2=affected,epel-7/min | |gw-libxml2=affected -- You are receiving this mail because: You are on the CC list for the bug.

https://bugzilla.redhat.com/show_bug.cgi?id=1281936 --- Doc Text *updated* by Timothy Walsh <twalsh(a)redhat.com&gt; --- A buffer over-read vulnerability was found in libxml2 in xmlNextChar causing segmentation fault when compiled with ASAN. -- You are receiving this mail because: You are on the CC list for the bug.

https://bugzilla.redhat.com/show_bug.cgi?id=1281936 --- Doc Text *updated* by Timothy Walsh <twalsh(a)redhat.com&gt; --- A heap-based buffer over-read flaw was found libxml2. The xmlNextChar function in libxml2 does not properly check the state, which allows context-dependent attackers to cause an application crash and denial of service or obtain sensitive information via crafted XML data. -- You are receiving this mail because: You are on the CC list for the bug.

https://bugzilla.redhat.com/show_bug.cgi?id=1281936 --- Doc Text *updated* by Martin Prpic <mprpic(a)redhat.com&gt; --- A denial of service flaw was found in libxml2. A remote attacker could provide a specially crafted XML or HTML file that, when processed by an application using libxml2, would cause that application to leak potentially sensitive information. -- You are receiving this mail because: You are on the CC list for the bug.