First published: Tue Aug 14 2018(Updated: )
USN-3739-1 fixed a vulnerability in libxml2. This update provides the corresponding update for Ubuntu 12.04. Original advisory details: Matias Brutti discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to expose sensitive information. (CVE-2016-9318) It was discovered that libxml2 incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service. (CVE-2018-14404)
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/libxml2 | <2.7.8.dfsg-5.1ubuntu4.21 | 2.7.8.dfsg-5.1ubuntu4.21 |
=12.04 | ||
All of | ||
ubuntu/libxml2-utils | <2.7.8.dfsg-5.1ubuntu4.21 | 2.7.8.dfsg-5.1ubuntu4.21 |
=12.04 | ||
All of | ||
ubuntu/python-libxml2 | <2.7.8.dfsg-5.1ubuntu4.21 | 2.7.8.dfsg-5.1ubuntu4.21 |
=12.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability addressed in USN-3739-2 is CVE-2016-9318.
The severity of the vulnerability is not specified.
The vulnerability affects libxml2 versions up to and including 2.7.8.dfsg-5.1ubuntu4.21.
To fix the vulnerability in libxml2, update to version 2.7.8.dfsg-5.1ubuntu4.21 or later.
You can find more information about USN-3739-2 on the Ubuntu Security Notice page: [link](https://ubuntu.com/security/notices/USN-3739-2).