StarlingX

  1. Bug #1954718
  2. Comment #3

Comment 3 for bug 1954718

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/822742
Committed: https://opendev.org/starlingx/tools/commit/e225629101ad8a120b4d582f4200e1bf5c5f3cc5
Submitter: "Zuul (22348)"
Branch: master

commit e225629101ad8a120b4d582f4200e1bf5c5f3cc5
Author: Joe Slater <email address hidden>
Date: Wed Dec 22 11:31:09 2021 -0500

    libxml2: fix CVE-2016-4658

    Fix use after free memory corruption involving XPointer ranges by
    advancing to version 2.9.1-6.el7_9.6.

    Testing

    build-pkgs; build-iso (not used); create designer patch
    install patch
    execute sanity test
    remove patch
    execute sanity test

    --- sanity test ---
    #!/bin/python
    import libxml2, sys
    doc = libxml2.parseFile("/etc/firewalld/zones/public.xml")
    print doc.name
    ---

    Closes-Bug: 1954718
    Signed-off-by: Joe Slater <email address hidden>
    Change-Id: I18ca9f179b6db2f95dfd532f62195f69b29add9b