Bug 2342118 (CVE-2022-49043) - CVE-2022-49043 libxml: use-after-free in xmlXIncludeAddNode
Summary: CVE-2022-49043 libxml: use-after-free in xmlXIncludeAddNode
Keywords:
Status: NEW
Alias: CVE-2022-49043
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2342194 2342195 2342196 2342197 2342202 2342203 2342204 2342205 2342206 2342198 2342199 2342200 2342201
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-01-26 06:01 UTC by OSIDB Bzimport
Modified: 2025-05-21 14:06 UTC (History)
20 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2025:1447 0 None None None 2025-02-13 15:34:07 UTC
Red Hat Product Errata RHBA-2025:1449 0 None None None 2025-02-13 15:57:21 UTC
Red Hat Product Errata RHBA-2025:1476 0 None None None 2025-02-13 18:52:43 UTC
Red Hat Product Errata RHBA-2025:1540 0 None None None 2025-02-17 08:20:20 UTC
Red Hat Product Errata RHBA-2025:1566 0 None None None 2025-02-17 10:29:05 UTC
Red Hat Product Errata RHBA-2025:1567 0 None None None 2025-02-17 10:36:09 UTC
Red Hat Product Errata RHBA-2025:1625 0 None None None 2025-02-18 10:06:56 UTC
Red Hat Product Errata RHBA-2025:1631 0 None None None 2025-02-18 09:36:16 UTC
Red Hat Product Errata RHBA-2025:1642 0 None None None 2025-02-18 13:10:30 UTC
Red Hat Product Errata RHBA-2025:1643 0 None None None 2025-02-18 13:07:03 UTC
Red Hat Product Errata RHBA-2025:1644 0 None None None 2025-02-18 13:18:45 UTC
Red Hat Product Errata RHBA-2025:1645 0 None None None 2025-02-18 14:43:40 UTC
Red Hat Product Errata RHBA-2025:1646 0 None None None 2025-02-18 15:00:43 UTC
Red Hat Product Errata RHBA-2025:1688 0 None None None 2025-02-19 18:02:42 UTC
Red Hat Product Errata RHBA-2025:1689 0 None None None 2025-02-19 18:11:12 UTC
Red Hat Product Errata RHBA-2025:1692 0 None None None 2025-02-19 18:38:48 UTC
Red Hat Product Errata RHBA-2025:1693 0 None None None 2025-02-19 18:38:58 UTC
Red Hat Product Errata RHBA-2025:1695 0 None None None 2025-02-19 18:48:48 UTC
Red Hat Product Errata RHBA-2025:1696 0 None None None 2025-02-19 18:51:30 UTC
Red Hat Product Errata RHBA-2025:1698 0 None None None 2025-02-19 19:18:54 UTC
Red Hat Product Errata RHBA-2025:1715 0 None None None 2025-02-20 11:18:01 UTC
Red Hat Product Errata RHBA-2025:1716 0 None None None 2025-02-20 11:35:03 UTC
Red Hat Product Errata RHBA-2025:1717 0 None None None 2025-02-20 11:17:12 UTC
Red Hat Product Errata RHBA-2025:1751 0 None None None 2025-02-24 01:00:53 UTC
Red Hat Product Errata RHBA-2025:1764 0 None None None 2025-02-24 12:44:02 UTC
Red Hat Product Errata RHBA-2025:1828 0 None None None 2025-02-25 09:49:54 UTC
Red Hat Product Errata RHBA-2025:1837 0 None None None 2025-02-25 15:04:54 UTC
Red Hat Product Errata RHBA-2025:1839 0 None None None 2025-02-25 18:03:12 UTC
Red Hat Product Errata RHBA-2025:1871 0 None None None 2025-02-26 14:06:20 UTC
Red Hat Product Errata RHBA-2025:1872 0 None None None 2025-02-26 14:59:08 UTC
Red Hat Product Errata RHBA-2025:1893 0 None None None 2025-02-27 07:19:44 UTC
Red Hat Product Errata RHBA-2025:1894 0 None None None 2025-02-27 07:19:38 UTC
Red Hat Product Errata RHBA-2025:1895 0 None None None 2025-02-27 07:19:41 UTC
Red Hat Product Errata RHBA-2025:1896 0 None None None 2025-02-27 07:19:52 UTC
Red Hat Product Errata RHBA-2025:1897 0 None None None 2025-02-27 07:20:03 UTC
Red Hat Product Errata RHBA-2025:1898 0 None None None 2025-02-27 07:19:55 UTC
Red Hat Product Errata RHBA-2025:1899 0 None None None 2025-02-27 07:20:06 UTC
Red Hat Product Errata RHBA-2025:1900 0 None None None 2025-02-27 07:20:34 UTC
Red Hat Product Errata RHBA-2025:1919 0 None None None 2025-02-27 10:57:57 UTC
Red Hat Product Errata RHBA-2025:1929 0 None None None 2025-02-27 16:54:52 UTC
Red Hat Product Errata RHBA-2025:1930 0 None None None 2025-02-27 15:49:26 UTC
Red Hat Product Errata RHBA-2025:1933 0 None None None 2025-02-27 16:45:12 UTC
Red Hat Product Errata RHBA-2025:1934 0 None None None 2025-02-27 17:16:49 UTC
Red Hat Product Errata RHBA-2025:2092 0 None None None 2025-03-03 15:29:27 UTC
Red Hat Product Errata RHBA-2025:2128 0 None None None 2025-03-03 17:44:28 UTC
Red Hat Product Errata RHBA-2025:2131 0 None None None 2025-03-04 10:06:31 UTC
Red Hat Product Errata RHBA-2025:2196 0 None None None 2025-03-04 11:15:19 UTC
Red Hat Product Errata RHBA-2025:2242 0 None None None 2025-03-04 16:53:44 UTC
Red Hat Product Errata RHBA-2025:2487 0 None None None 2025-03-10 07:50:27 UTC
Red Hat Product Errata RHBA-2025:2499 0 None None None 2025-03-10 14:00:10 UTC
Red Hat Product Errata RHBA-2025:2717 0 None None None 2025-03-13 08:14:31 UTC
Red Hat Product Errata RHBA-2025:2951 0 None None None 2025-03-17 15:36:10 UTC
Red Hat Product Errata RHBA-2025:2961 0 None None None 2025-03-17 17:59:28 UTC
Red Hat Product Errata RHBA-2025:3087 0 None None None 2025-03-20 15:02:50 UTC
Red Hat Product Errata RHSA-2025:1350 0 None None None 2025-02-12 15:23:38 UTC
Red Hat Product Errata RHSA-2025:1487 0 None None None 2025-02-13 20:14:58 UTC
Red Hat Product Errata RHSA-2025:1516 0 None None None 2025-02-17 01:25:12 UTC
Red Hat Product Errata RHSA-2025:1517 0 None None None 2025-02-17 01:28:43 UTC
Red Hat Product Errata RHSA-2025:1925 0 None None None 2025-02-27 15:19:51 UTC
Red Hat Product Errata RHSA-2025:2507 0 None None None 2025-03-10 13:09:17 UTC
Red Hat Product Errata RHSA-2025:2678 0 None None None 2025-03-12 11:25:54 UTC
Red Hat Product Errata RHSA-2025:3775 0 None None None 2025-04-16 06:12:33 UTC
Red Hat Product Errata RHSA-2025:3798 0 None None None 2025-04-16 17:46:13 UTC
Red Hat Product Errata RHSA-2025:4409 0 None None None 2025-05-08 19:54:43 UTC
Red Hat Product Errata RHSA-2025:4422 0 None None None 2025-05-08 19:55:47 UTC
Red Hat Product Errata RHSA-2025:4677 0 None None None 2025-05-15 16:34:47 UTC
Red Hat Product Errata RHSA-2025:7702 0 None None None 2025-05-21 14:06:46 UTC

Description OSIDB Bzimport 2025-01-26 06:01:07 UTC 
xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free.
Comment 3 errata-xmlrpc 2025-02-12 15:23:36 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:1350 https://access.redhat.com/errata/RHSA-2025:1350
Comment 4 errata-xmlrpc 2025-02-13 20:14:55 UTC 
This issue has been addressed in the following products:

  Discovery 1 for RHEL 9

Via RHSA-2025:1487 https://access.redhat.com/errata/RHSA-2025:1487
Comment 7 errata-xmlrpc 2025-02-17 01:25:10 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Extended Update Support

Via RHSA-2025:1516 https://access.redhat.com/errata/RHSA-2025:1516
Comment 8 errata-xmlrpc 2025-02-17 01:28:41 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2025:1517 https://access.redhat.com/errata/RHSA-2025:1517
Comment 9 errata-xmlrpc 2025-02-27 15:19:49 UTC 
This issue has been addressed in the following products:

  Service Interconnect 1 for RHEL 9

Via RHSA-2025:1925 https://access.redhat.com/errata/RHSA-2025:1925
Comment 10 errata-xmlrpc 2025-03-10 13:09:14 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Extended Update Support

Via RHSA-2025:2507 https://access.redhat.com/errata/RHSA-2025:2507
Comment 11 errata-xmlrpc 2025-03-12 11:25:51 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:2678 https://access.redhat.com/errata/RHSA-2025:2678
Comment 13 errata-xmlrpc 2025-04-16 06:12:31 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.18

Via RHSA-2025:3775 https://access.redhat.com/errata/RHSA-2025:3775
Comment 14 errata-xmlrpc 2025-04-16 17:46:10 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.17

Via RHSA-2025:3798 https://access.redhat.com/errata/RHSA-2025:3798
Comment 15 errata-xmlrpc 2025-05-08 19:54:39 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.12

Via RHSA-2025:4409 https://access.redhat.com/errata/RHSA-2025:4409
Comment 16 errata-xmlrpc 2025-05-08 19:55:44 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.15

Via RHSA-2025:4422 https://access.redhat.com/errata/RHSA-2025:4422
Comment 17 errata-xmlrpc 2025-05-15 16:34:44 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.13

Via RHSA-2025:4677 https://access.redhat.com/errata/RHSA-2025:4677
Comment 19 errata-xmlrpc 2025-05-21 14:06:43 UTC 
This issue has been addressed in the following products:

  Red Hat OpenShift Container Platform 4.14

Via RHSA-2025:7702 https://access.redhat.com/errata/RHSA-2025:7702
Note You need to log in before you can comment on or make changes to this bug.