Red Hat Product Errata RHSA-2025:13310 - Security Advisory
Issued:
2025-08-07
Updated:
2025-08-07

RHSA-2025:13310 - Security Advisory

Synopsis

Important: libxml2 security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for libxml2 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The libxml2 library is a development toolbox providing the implementation of various XML standards.

Security Fix(es):

  • libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr (CVE-2025-7425)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.4 x86_64

Fixes

  • BZ - 2379274 - CVE-2025-7425 libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4

SRPM
libxml2-2.9.7-9.el8_4.7.src.rpm SHA-256: 83691554827e12a688447dd1ee1aa8be5830b4a545ae0209c5b790e4141d305b
x86_64
libxml2-2.9.7-9.el8_4.7.i686.rpm SHA-256: 64115062f204b5272521b8cf2c2c78806f9196138d1a04047aac1219191b6759
libxml2-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 8219fe2f50a294c6378725bb7868a881d30f7a3cf014785197221e999e156d24
libxml2-debuginfo-2.9.7-9.el8_4.7.i686.rpm SHA-256: 980077fbe7ce573264540dbd6aa301ef4087ae479e171b989c02b18547613ed5
libxml2-debuginfo-2.9.7-9.el8_4.7.i686.rpm SHA-256: 980077fbe7ce573264540dbd6aa301ef4087ae479e171b989c02b18547613ed5
libxml2-debuginfo-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 23f7cffb1789df20bdd1b19be571969aac06cbffd922ce8335512243e37e66ce
libxml2-debuginfo-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 23f7cffb1789df20bdd1b19be571969aac06cbffd922ce8335512243e37e66ce
libxml2-debugsource-2.9.7-9.el8_4.7.i686.rpm SHA-256: e9c36981d57e8e6f4f8b0511f6e392fd0ba0b416c0760f96c08c8c22760a350a
libxml2-debugsource-2.9.7-9.el8_4.7.i686.rpm SHA-256: e9c36981d57e8e6f4f8b0511f6e392fd0ba0b416c0760f96c08c8c22760a350a
libxml2-debugsource-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 65121de015027eaed5fc385673fbe83976b212351966d2ce3787932ea2e2ad1c
libxml2-debugsource-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 65121de015027eaed5fc385673fbe83976b212351966d2ce3787932ea2e2ad1c
libxml2-devel-2.9.7-9.el8_4.7.i686.rpm SHA-256: 98ba97208db9e776e31fb6bf5d61e7cd565f2dcc60ec693d05a247935e689cbe
libxml2-devel-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 072b2fcf81b4f4758841f09046b273ed710402c8415c757ed75d1bf56fa4abc5
python3-libxml2-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: cf3136805f823a5f55a8ce424647dd21f5527f1e3be7eb8a6d368fb2bc4b66eb
python3-libxml2-debuginfo-2.9.7-9.el8_4.7.i686.rpm SHA-256: 74a5cb56e817295e58809af49d29746e63332dfc640623e3cba8464f224509af
python3-libxml2-debuginfo-2.9.7-9.el8_4.7.i686.rpm SHA-256: 74a5cb56e817295e58809af49d29746e63332dfc640623e3cba8464f224509af
python3-libxml2-debuginfo-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: a5e4e8a32e5d3333bccf1ce7a295a07f63183d262d33a72f516942a94c6777db
python3-libxml2-debuginfo-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: a5e4e8a32e5d3333bccf1ce7a295a07f63183d262d33a72f516942a94c6777db

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
libxml2-2.9.7-9.el8_4.7.src.rpm SHA-256: 83691554827e12a688447dd1ee1aa8be5830b4a545ae0209c5b790e4141d305b
x86_64
libxml2-2.9.7-9.el8_4.7.i686.rpm SHA-256: 64115062f204b5272521b8cf2c2c78806f9196138d1a04047aac1219191b6759
libxml2-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 8219fe2f50a294c6378725bb7868a881d30f7a3cf014785197221e999e156d24
libxml2-debuginfo-2.9.7-9.el8_4.7.i686.rpm SHA-256: 980077fbe7ce573264540dbd6aa301ef4087ae479e171b989c02b18547613ed5
libxml2-debuginfo-2.9.7-9.el8_4.7.i686.rpm SHA-256: 980077fbe7ce573264540dbd6aa301ef4087ae479e171b989c02b18547613ed5
libxml2-debuginfo-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 23f7cffb1789df20bdd1b19be571969aac06cbffd922ce8335512243e37e66ce
libxml2-debuginfo-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 23f7cffb1789df20bdd1b19be571969aac06cbffd922ce8335512243e37e66ce
libxml2-debugsource-2.9.7-9.el8_4.7.i686.rpm SHA-256: e9c36981d57e8e6f4f8b0511f6e392fd0ba0b416c0760f96c08c8c22760a350a
libxml2-debugsource-2.9.7-9.el8_4.7.i686.rpm SHA-256: e9c36981d57e8e6f4f8b0511f6e392fd0ba0b416c0760f96c08c8c22760a350a
libxml2-debugsource-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 65121de015027eaed5fc385673fbe83976b212351966d2ce3787932ea2e2ad1c
libxml2-debugsource-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 65121de015027eaed5fc385673fbe83976b212351966d2ce3787932ea2e2ad1c
libxml2-devel-2.9.7-9.el8_4.7.i686.rpm SHA-256: 98ba97208db9e776e31fb6bf5d61e7cd565f2dcc60ec693d05a247935e689cbe
libxml2-devel-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: 072b2fcf81b4f4758841f09046b273ed710402c8415c757ed75d1bf56fa4abc5
python3-libxml2-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: cf3136805f823a5f55a8ce424647dd21f5527f1e3be7eb8a6d368fb2bc4b66eb
python3-libxml2-debuginfo-2.9.7-9.el8_4.7.i686.rpm SHA-256: 74a5cb56e817295e58809af49d29746e63332dfc640623e3cba8464f224509af
python3-libxml2-debuginfo-2.9.7-9.el8_4.7.i686.rpm SHA-256: 74a5cb56e817295e58809af49d29746e63332dfc640623e3cba8464f224509af
python3-libxml2-debuginfo-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: a5e4e8a32e5d3333bccf1ce7a295a07f63183d262d33a72f516942a94c6777db
python3-libxml2-debuginfo-2.9.7-9.el8_4.7.x86_64.rpm SHA-256: a5e4e8a32e5d3333bccf1ce7a295a07f63183d262d33a72f516942a94c6777db

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.