Overview

File _patchinfo of Package patchinfo.28754

<patchinfo incident="28754">
  <issue tracker="cve" id="2023-29469"/>
  <issue tracker="cve" id="2023-28484"/>
  <issue tracker="bnc" id="1209918">L3: Bootstrapping a traditional client fails with dependencies</issue>
  <issue tracker="bnc" id="1210411">VUL-0: CVE-2023-28484: libxml2,python-libxml2: NULL dereference in xmlSchemaFixupComplexType</issue>
  <issue tracker="bnc" id="1210412">VUL-0: CVE-2023-29469: libxml2,python-libxml2: Hashing of empty dict strings isn't deterministic</issue>
  <packager>david.anes</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for libxml2</summary>
  <description>This update for libxml2 fixes the following issues:

- CVE-2023-29469: Fixed inconsistent result when hashing empty strings (bsc#1210412).
- CVE-2023-28484: Fixed NULL pointer dereference in xmlSchemaFixupComplexType (bsc#1210411).

The following non-security bug was fixed:

- Remove unneeded dependency (bsc#1209918). 
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places