Libxml2 version 2.13.8 has been officially released, addressing two significant security vulnerabilities. The release aims to enhance the software's security and stability for users.
The specific security issues addressed in this update include:
- CVE-2025-32415: This vulnerability involves a heap buffer overflow in the `xmlSchemaIDCFillNodeTables` function, which could potentially lead to memory corruption or denial of service.
- CVE-2025-32414: This issue pertains to a restriction in Python integrations, ensuring that only a maximum of a quarter of the length of input data is read, thereby preventing excessive data reads.
For those interested in updating or downloading the latest version, the source files are available at the official GNOME download link provided. Users are encouraged to upgrade to this new version to mitigate these security risks.
In addition to these fixes, the Libxml2 team continues to work on further enhancements and optimizations for future releases. Users can look forward to additional features and improvements that will be outlined in more detailed release notes and documentation as the project evolves
The specific security issues addressed in this update include:
- CVE-2025-32415: This vulnerability involves a heap buffer overflow in the `xmlSchemaIDCFillNodeTables` function, which could potentially lead to memory corruption or denial of service.
- CVE-2025-32414: This issue pertains to a restriction in Python integrations, ensuring that only a maximum of a quarter of the length of input data is read, thereby preventing excessive data reads.
For those interested in updating or downloading the latest version, the source files are available at the official GNOME download link provided. Users are encouraged to upgrade to this new version to mitigate these security risks.
In addition to these fixes, the Libxml2 team continues to work on further enhancements and optimizations for future releases. Users can look forward to additional features and improvements that will be outlined in more detailed release notes and documentation as the project evolves
Libxml2 2.13.8 released
Libxml2 2.13.8 has been released, addressing two security issues.
