-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 06 Jun 2025 16:50:13 +0800
Source: libxml2
Binary: libxml2 libxml2-dbgsym libxml2-dev libxml2-utils libxml2-utils-dbgsym python3-libxml2 python3-libxml2-dbgsym
Architecture: armhf
Version: 2.9.14+dfsg-1.3~deb12u2
Distribution: bookworm-security
Urgency: high
Maintainer: arm Build Daemon (arm-conova-04) <buildd_arm64-arm-conova-04@buildd.debian.org>
Changed-By: Aron Xu <aron@debian.org>
Description:
 libxml2    - GNOME XML library
 libxml2-dev - GNOME XML library - development files
 libxml2-utils - GNOME XML library - utilities
 python3-libxml2 - GNOME XML library - Python3 bindings
Closes: 1051230 1053629 1063234 1071162 1094238 1098320 1098321 1098322 1102521 1103511
Changes:
 libxml2 (2.9.14+dfsg-1.3~deb12u2) bookworm-security; urgency=high
 .
   * Security fixes:
     - CVE-2023-39615: out-of-bounds read via the xmlSAX2StartElement()
       (Closes: #1051230)
     - CVE-2023-45322: use-after-free in xmlUnlinkNode()
       (Closes: #1053629)
     - CVE-2024-25062: use-after-free in xmlValidatePopElement()
       (Closes: #1063234)
     - CVE-2025-32414: out-of-bounds read in Python bindings
       (Closes: #1102521)
     - CVE-2025-32415: heap-based buffer under-read via
       xmlSchemaIDCFillNodeTables() (Closes: #1103511)
     - CVE-2022-49043: use-after-free in xmlXIncludeAddNode()
       (Closes: #1094238)
     - CVE-2024-34459: buffer over-read in xmlHTMLPrintFileContext of xmllint
       (Closes: #1071162)
     - CVE-2024-56171: use-after-free after xmlSchemaItemListAdd()
       (Closes: #1098320)
     - CVE-2025-24928: stack-buffer-overflow in xmlSnprintfElements()
       (Closes: #1098321)
     - CVE-2025-27113: NULL pointer dereference in xmlPatMatch()
       (Closes: #1098322)
Checksums-Sha1:
 1350129f05b3d240295ad4d14217f24353e244ca 1869404 libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 0f9ffb990dbb12d8a3cdf919aba6b3905878db4f 709096 libxml2-dev_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 9af2e7d0858c9c3029fe3c9c6d1a865de048ed88 77268 libxml2-utils-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 d169357169024a72f44d5decc4766fc55bcffe13 97928 libxml2-utils_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 80ddec9128986e99284a504ce8ebb8bfeb6f0c94 9006 libxml2_2.9.14+dfsg-1.3~deb12u2_armhf-buildd.buildinfo
 6fb57bd5e510da086b927714deea5665d0d7961d 591864 libxml2_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 41941bf092a73b95bc02de848c4cd04219e17099 244784 python3-libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 fa4f88e14c9843c6c0630456806e2f229323c23e 178512 python3-libxml2_2.9.14+dfsg-1.3~deb12u2_armhf.deb
Checksums-Sha256:
 72bb7482d507fbf3de6dea30f7591455f0c123567ac5c0de581b903492c96355 1869404 libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 1b7f48524834b111a791877f488e55bd6da9bc68b1cbba60c104cc628bd1e334 709096 libxml2-dev_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 68900a119b1b32f4606b8b5b13b55dea114ea8de49e338b97528e02e6cb49f13 77268 libxml2-utils-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 7da71409aa4672eaa324d0048a05877f38149bb25c4bde216fe3dc40984ced6f 97928 libxml2-utils_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 ed574aef6d100f3f54d997b6fefc28ab4b954497b44bc544d0b7737a1c12d4b9 9006 libxml2_2.9.14+dfsg-1.3~deb12u2_armhf-buildd.buildinfo
 e3f3a733b3217c7c4faee24076d1f78e930ea1ab2983aeb132b56b8ff46d0bbb 591864 libxml2_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 ca38f00d7d254a5a781aa762beb3beef536c707c5e19ed14a3b10c593b03d26e 244784 python3-libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 cc9e0cd48aa8f5c6e4e816f31203eb865efe013d8b54b4985dbd8b137eae8f2c 178512 python3-libxml2_2.9.14+dfsg-1.3~deb12u2_armhf.deb
Files:
 e48b4bdd9ed0c0981bbaf6e21971f9ee 1869404 debug optional libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 ea630b9fba77aa571704f9e1c9398cbf 709096 libdevel optional libxml2-dev_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 0e67dbb5985a3ed9fd0c265f327c57fb 77268 debug optional libxml2-utils-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 48fd1dab5f3ccdf604eca47dff39658d 97928 text optional libxml2-utils_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 2fa38b31344dcd8cc8b0caf05391469e 9006 libs optional libxml2_2.9.14+dfsg-1.3~deb12u2_armhf-buildd.buildinfo
 b3c4bc65b6dacd7b053b806af0ee22af 591864 libs optional libxml2_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 8b98426787edf6f7bb5acf08bc96b33f 244784 debug optional python3-libxml2-dbgsym_2.9.14+dfsg-1.3~deb12u2_armhf.deb
 d5efa8187117482652ab38a0870a282a 178512 python optional python3-libxml2_2.9.14+dfsg-1.3~deb12u2_armhf.deb

-----BEGIN PGP SIGNATURE-----
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=FvOS
-----END PGP SIGNATURE-----