Bug 1281955

Summary: libxml2: Multiple out-of-bounds reads in xmlDictComputeFastKey.isra.2 and xmlDictAddString.isra.O
Product: [Other] Security Response Reporter: Adam Mariš <amaris>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED DUPLICATE QA Contact:
Severity: low Docs Contact:
Priority: low    
Version: unspecifiedCC: ohudlick, osoukup, security-response-team, veillard
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-12-01 10:00:36 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1284794, 1286495, 1286496, 1286497    
Bug Blocks: 1274223, 1281961    

Description Adam Mariš 2015-11-13 21:55:43 UTC 
Multiple out-of-bounds reads were found in libxml2.

Upstream bug:

https://bugzilla.gnome.org/show_bug.cgi?id=757699
Comment 6 Daniel Veillard 2015-11-30 08:00:49 UTC 
This is fixed by the 2 patches for CVE-2015-7941

Daniel
Comment 7 Huzaifa S. Sidhpurwala 2015-12-01 10:00:36 UTC 

*** This bug has been marked as a duplicate of bug 1274222 ***
Comment 8 errata-xmlrpc 2015-12-07 10:15:17 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6

Via RHSA-2015:2549 https://rhn.redhat.com/errata/RHSA-2015-2549.html
Comment 9 errata-xmlrpc 2015-12-07 12:01:24 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2015:2550 https://rhn.redhat.com/errata/RHSA-2015-2550.html