Synopsis: Low: libxml2 security and bug fix update
Advisory ID: SLSA-2015:1419-1
Issue Date: 2015-07-22
CVE Numbers: CVE-2015-1819
A denial of service flaw was found in the way the libxml2 library parsed
certain XML files. An attacker could provide a specially crafted XML file
that, when parsed by an application using libxml2, could cause that
application to use an excessive amount of memory. (CVE-2015-1819)
This update also fixes the following bug:
This update fixes an error that occurred when running a test case for the
serialization of HTML documents.
The desktop must be restarted (log out, then log back in) for this update
to take effect.
– Scientific Linux Development Team