libxml2: fix CVE-2016-4658

Fix use after free memory corruption involving XPointer ranges by advancing to version 2.9.1-6.el7_9.6. Testing build-pkgs; build-iso (not used); create designer patch install patch execute sanity test remove patch execute sanity test --- sanity test --- #!/bin/python import libxml2, sys doc = libxml2.parseFile("/etc/firewalld/zones/public.xml") print doc.name --- Closes-Bug: 1954718 Signed-off-by: Joe Slater <joe.slater@windriver.com> Change-Id: I18ca9f179b6db2f95dfd532f62195f69b29add9b
2021-12-22 11:31:09 -05:00
parent 6563846502
commit e225629101
4 changed files with 6 additions and 6 deletions
--- a/centos-mirror-tools/config/centos/flock/rpms_centos.lst
+++ b/centos-mirror-tools/config/centos/flock/rpms_centos.lst
@@ -523,8 +523,8 @@ libxcb-1.13-1.el7.x86_64.rpm
 libXext-1.3.3-3.el7.x86_64.rpm
 libXfont-1.5.4-1.el7.x86_64.rpm
 libXi-1.7.9-1.el7.x86_64.rpm
-# libxml2-2.9.1-6.el7_2.3.x86_64.rpm provided by mock
-libxml2-python-2.9.1-6.el7_2.3.x86_64.rpm
+# libxml2-2.9.1-6.el7_9.6.x86_64.rpm provided by mock
+libxml2-python-2.9.1-6.el7_9.6.x86_64.rpm
 libXpm-devel-3.5.12-1.el7.x86_64.rpm
 libxslt-1.1.28-6.el7.x86_64.rpm
 libxslt-devel-1.1.28-6.el7.x86_64.rpm