- Vulnerability/
- USN-7467-1
USN-7467-1: libxml2 vulnerabilities
First published: Mon Apr 28 2025(Updated: )
It was discovered that the libxml2 Python bindings incorrectly handled certain return values. An attacker could possibly use this issue to cause libxml2 to crash, resulting in a denial of service. (CVE-2025-32414) It was discovered that libxml2 incorrectly handled certain memory operations. A remote attacker could possibly use this issue to cause libxml2 to crash, resulting in a denial of service. (CVE-2025-32415)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| libxml2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of USN-7467-1?
The severity of USN-7467-1 is classified as a denial of service vulnerability that can cause libxml2 to crash.
How do I fix USN-7467-1?
To fix USN-7467-1, update libxml2 and python3-libxml2 to the recommended versions provided in the advisory.
Which versions of Ubuntu are affected by USN-7467-1?
USN-7467-1 affects Ubuntu versions 20.04, 22.04, 24.04, and 25.04.
Can USN-7467-1 be exploited remotely?
Yes, an attacker could potentially exploit USN-7467-1 remotely to cause a denial of service.
Is the libxml2 Python binding affected by USN-7467-1?
Yes, the libxml2 Python bindings are specifically mentioned as being affected by USN-7467-1.
- agent/last-modified-date
- agent/title
- agent/source
- agent/type
- agent/description
- agent/first-publish-date
- collector/usn
- source/Ubuntu
- agent/references
- agent/event
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- vendor/gnome
- canonical/libxml2