File _patchinfo of Package patchinfo.28754
<patchinfo incident="28754">
<issue tracker="cve" id="2023-29469"/>
<issue tracker="cve" id="2023-28484"/>
<issue tracker="bnc" id="1209918">L3: Bootstrapping a traditional client fails with dependencies</issue>
<issue tracker="bnc" id="1210411">VUL-0: CVE-2023-28484: libxml2,python-libxml2: NULL dereference in xmlSchemaFixupComplexType</issue>
<issue tracker="bnc" id="1210412">VUL-0: CVE-2023-29469: libxml2,python-libxml2: Hashing of empty dict strings isn't deterministic</issue>
<packager>david.anes</packager>
<rating>moderate</rating>
<category>security</category>
<summary>Security update for libxml2</summary>
<description>This update for libxml2 fixes the following issues:
- CVE-2023-29469: Fixed inconsistent result when hashing empty strings (bsc#1210412).
- CVE-2023-28484: Fixed NULL pointer dereference in xmlSchemaFixupComplexType (bsc#1210411).
The following non-security bug was fixed:
- Remove unneeded dependency (bsc#1209918).
</description>
</patchinfo>