Security update for libxml2

Announcement ID:	SUSE-SU-2018:3080-1
Rating:	moderate
References:	bsc#1088279 bsc#1102046 bsc#1105166
Cross-References:	CVE-2018-14404 CVE-2018-14567 CVE-2018-9251
CVSS scores:	CVE-2018-14404 ( SUSE ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2018-14404 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-14567 ( SUSE ): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2018-14567 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-9251 ( SUSE ): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-9251 ( NVD ): 5.3 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Products:	Basesystem Module 15 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15

An update that solves three vulnerabilities can now be installed.

Description:

This update for libxml2 fixes the following security issues:

• CVE-2018-9251: The xz_decomp function allowed remote attackers to cause a denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint (bsc#1088279)
• CVE-2018-14567: Prevent denial of service (infinite loop) via a crafted XML file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint (bsc#1105166)
• CVE-2018-14404: Prevent NULL pointer dereference in the xmlXPathCompOpEval() function when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case leading to a denial of service attack (bsc#1102046)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• Basesystem Module 15
  zypper in -t patch SUSE-SLE-Module-Basesystem-15-2018-2182=1

Package List:

• Basesystem Module 15 (aarch64 ppc64le s390x x86_64)
  • python3-libxml2-python-2.9.7-3.3.1
  • libxml2-tools-debuginfo-2.9.7-3.3.1
  • python-libxml2-python-debugsource-2.9.7-3.3.1
  • libxml2-tools-2.9.7-3.3.1
  • libxml2-2-debuginfo-2.9.7-3.3.1
  • python2-libxml2-python-2.9.7-3.3.1
  • libxml2-devel-2.9.7-3.3.1
  • python3-libxml2-python-debuginfo-2.9.7-3.3.1
  • python2-libxml2-python-debuginfo-2.9.7-3.3.1
  • libxml2-debugsource-2.9.7-3.3.1
  • libxml2-2-2.9.7-3.3.1
• Basesystem Module 15 (x86_64)
  • libxml2-2-32bit-2.9.7-3.3.1
  • libxml2-2-32bit-debuginfo-2.9.7-3.3.1

References:

• https://www.suse.com/security/cve/CVE-2018-14404.html
• https://www.suse.com/security/cve/CVE-2018-14567.html
• https://www.suse.com/security/cve/CVE-2018-9251.html
• https://bugzilla.suse.com/show_bug.cgi?id=1088279
• https://bugzilla.suse.com/show_bug.cgi?id=1102046
• https://bugzilla.suse.com/show_bug.cgi?id=1105166