update: dev-libs/libxml2 #1302

tormath1 · 2023-12-19T10:40:36Z

Name: dev-libs/libxml2
CVEs: CVE-2023-45322
CVSSs: 6.5
Action Needed: upgrade to >=2.11.5-r1

Summary: libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails.

refmap.gentoo: https://bugs.gentoo.org/915351

tormath1 added security security concerns advisory security advisory cvss/MEDIUM >= 4 && < 7 assessed CVSS labels Dec 19, 2023

github-project-automation bot added this to Flatcar tactical, release planning, and roadmap Dec 19, 2023

github-project-automation bot moved this to 📝 Needs Triage in Flatcar tactical, release planning, and roadmap Dec 19, 2023

github-actions bot mentioned this issue Dec 22, 2023

Monthly contributions report 2023-11-22 - 2023-12-21 #1305

Closed

krnowak mentioned this issue Jan 5, 2024

Weekly portage-stable package updates 2024-01-01 flatcar/scripts#1535

Merged

2 tasks

dongsupark moved this from 📝 Needs Triage to ⚒️ In Progress in Flatcar tactical, release planning, and roadmap Jan 9, 2024

krnowak closed this as completed in flatcar/scripts#1535 Jan 11, 2024

github-project-automation bot moved this from ⚒️ In Progress to Implemented in Flatcar tactical, release planning, and roadmap Jan 11, 2024

github-actions bot mentioned this issue Jan 22, 2024

Monthly contributions report 2023-12-22 - 2024-01-21 #1327

Closed

dongsupark removed this from Flatcar tactical, release planning, and roadmap Jul 3, 2024

Provide feedback