-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 06 Jun 2025 16:50:13 +0800
Source: libxml2
Binary: libxml2 libxml2-dbgsym libxml2-dev libxml2-utils libxml2-utils-dbgsym python3-libxml2 python3-libxml2-dbgsym
Architecture: s390x
Version: 2.9.14+dfsg-1.3~deb12u2
Distribution: bookworm-security
Urgency: high
Maintainer: s390x Build Daemon (zani) <buildd_s390x-zani@buildd.debian.org>
Changed-By: Aron Xu <aron@debian.org>
Description:
 libxml2    - GNOME XML library
 libxml2-dev - GNOME XML library - development files
 libxml2-utils - GNOME XML library - utilities
 python3-libxml2 - GNOME XML library - Python3 bindings
Closes: 1051230 1053629 1063234 1071162 1094238 1098320 1098321 1098322 1102521 1103511
Changes:
 libxml2 (2.9.14+dfsg-1.3~deb12u2) bookworm-security; urgency=high
 .
   * Security fixes:
     - CVE-2023-39615: out-of-bounds read via the xmlSAX2StartElement()
       (Closes: #1051230)
     - CVE-2023-45322: use-after-free in xmlUnlinkNode()
       (Closes: #1053629)
     - CVE-2024-25062: use-after-free in xmlValidatePopElement()
       (Closes: #1063234)
     - CVE-2025-32414: out-of-bounds read in Python bindings
       (Closes: #1102521)
     - CVE-2025-32415: heap-based buffer under-read via
       xmlSchemaIDCFillNodeTables() (Closes: #1103511)
     - CVE-2022-49043: use-after-free in xmlXIncludeAddNode()
       (Closes: #1094238)
     - CVE-2024-34459: buffer over-read in xmlHTMLPrintFileContext of xmllint
       (Closes: #1071162)
     - CVE-2024-56171: use-after-free after xmlSchemaItemListAdd()
       (Closes: #1098320)
     - CVE-2025-24928: stack-buffer-overflow in xmlSnprintfElements()
       (Closes: #1098321)
     - CVE-2025-27113: NULL pointer dereference in xmlPatMatch()
       (Closes: #1098322)
Checksums-Sha1:
 1cdca09477cd99df4ecc7e9410da8de164f54b2a 1869752 libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 6c5868333af2fe2f5fa95387266b8fecdbef5b6e 709284 libxml2-dev_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 0d3471448ccdb8dc056122f4dc6abfceaf2abc2d 76792 libxml2-utils-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 6d921f7d67a048393eeba00317dbc4532164f0ee 96736 libxml2-utils_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 9003434efb5f6adebb7abbf362669e1e3f47f6d0 9050 libxml2_2.9.14+dfsg-1.3~deb12u2_s390x-buildd.buildinfo
 04a4b9a684ffce148225a81b68a102901f4f7de7 604844 libxml2_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 8225c4a3ee12d011efd46631270d44e3ce333271 243664 python3-libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 8e047bed4b8855ce08919a55a961ecfae8113fe4 185484 python3-libxml2_2.9.14+dfsg-1.3~deb12u2_s390x.deb
Checksums-Sha256:
 79cdee405aeee5020a980ca85e8d1731595d1eeac831c9a6caa234da5b4d86c5 1869752 libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 28f8f0f5d10728cb4dbe836ab985b4365b34a3eee88a9f3ee2c70eb4c7449d0b 709284 libxml2-dev_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 ac59a9bb9f7b96434647437aece571c52af1c65400a4ff0b02db8d96523621df 76792 libxml2-utils-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 7a08f3c9986da7e62b082ef5a450ba9ea51690ba086bcc0035c727b63ca7a530 96736 libxml2-utils_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 c6c988ce1dc4dc7bd1b4580239cab6797c84698149a8bf7569e627190c853718 9050 libxml2_2.9.14+dfsg-1.3~deb12u2_s390x-buildd.buildinfo
 cadb4607fec4930a5ebe076e750da7fb2b49e1386d5be259370bb840bdd6134b 604844 libxml2_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 de2e6cb76c36a22a7dbb3c422702237c01d875fc292402734fa4fdac8c0430e5 243664 python3-libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 b4308e707903f5056564f604f872345518a2c8cbfaba2c554e519f6cafe4f382 185484 python3-libxml2_2.9.14+dfsg-1.3~deb12u2_s390x.deb
Files:
 c7ad35fc56246673758288b91009ba31 1869752 debug optional libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 3c309349be869b276c17f13145d65354 709284 libdevel optional libxml2-dev_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 4bfc777edd01b170a84719166710fde8 76792 debug optional libxml2-utils-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 24ec93fc84f46bd4afa416c9c9dbecdc 96736 text optional libxml2-utils_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 dff7a699635796f78877b4852ac62dff 9050 libs optional libxml2_2.9.14+dfsg-1.3~deb12u2_s390x-buildd.buildinfo
 dc09d2623c996d975fec81232785ca0a 604844 libs optional libxml2_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 efe7d1ea2feeb28d6905a43fd6fef514 243664 debug optional python3-libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_s390x.deb
 d8f85e4719e095e46c1bf12005d6dac9 185484 python optional python3-libxml2_2.9.14+dfsg-1.3~deb12u2_s390x.deb

-----BEGIN PGP SIGNATURE-----
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=gQll
-----END PGP SIGNATURE-----