Bug 12940

Summary:	Libxml2 Security fixed CVE-2022-40303 CVE-2022-40304
Product:	[ROSA-based products] ROSA Fresh	Reporter:	Svyatoslav Matveev <s.matveev>
Component:	Packages from Main	Assignee:	ROSA Linux Bugs <bugs>
Status:	VERIFIED FIXED	QA Contact:	ROSA Linux Bugs <bugs>
Severity:	critical
Priority:	High	CC:	a.proklov, e.malashin, v.potapov
Version:	All	Flags:	v.potapov: qa_verified+ a.proklov: published+
Target Milestone:	---
Hardware:	All
OS:	Linux
Whiteboard:
Platform:	2021.1	ROSA Vulnerability identifier:
RPM Package:		ISO-related:
Bad POT generating:		Upstream:

Description Svyatoslav Matveev 2022-11-30 18:00:49 MSK

********** QA ADVISORY **********

fixed CVE-2022-40303 CVE-2022-40304

*** libxml2
https://abf.io/build_lists/4179914
https://abf.io/build_lists/4179913
https://abf.io/build_lists/4179915
https://abf.io/build_lists/4179916
https://abf.io/build_lists/4179917

Comment 1 e.malashin@rosalinux.ru 2022-12-06 13:44:27 MSK

The update sent to testings

Comment 2 Vladimir Potapov 2022-12-07 16:42:29 MSK

libxml2-2.9.14-3
https://abf.io/build_lists/4179914
https://abf.io/build_lists/4179913
https://abf.io/build_lists/4179915
https://abf.io/build_lists/4179916
https://abf.io/build_lists/4179917
****************************** Advisory ************************
fixed CVE-2022-40303 CVE-2022-40304
****************************************************************
QA Verified