Security update for libxml2 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:02617-1 Final 1 1 2025-08-04T07:05:10Z current 2025-08-04T07:05:10Z 2025-08-04T07:05:10Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for libxml2 This update for libxml2 fixes the following issues: - CVE-2025-7425: Fixed heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr (bsc#1246296) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container bci/bci-sle15-kernel-module-devel:latest-2025-2617,Container bci/kiwi:latest-2025-2617,Container bci/php-apache:latest-2025-2617,Container bci/php-fpm:latest-2025-2617,Container bci/php:latest-2025-2617,Container suse/bind:latest-2025-2617,Container suse/kiosk/xorg:latest-2025-2617,Container suse/mariadb:latest-2025-2617,Container suse/nginx:latest-2025-2617,Container suse/pcp:latest-2025-2617,Container suse/postgres:16-2025-2617,Container suse/postgres:latest-2025-2617,Container suse/rmt-server:latest-2025-2617,Container suse/samba-client:latest-2025-2617,Container suse/samba-server:latest-2025-2617,Container suse/samba-toolbox:latest-2025-2617,Container suse/sle15:latest-2025-2617,SUSE-2025-2617,SUSE-SLE-Module-Basesystem-15-SP7-2025-2617,SUSE-SLE-Module-Python3-15-SP7-2025-2617 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202502617-1/ Link for SUSE-SU-2025:02617-1 https://lists.suse.com/pipermail/sle-updates/2025-August/041012.html E-Mail link for SUSE-SU-2025:02617-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1246296 SUSE Bug 1246296 https://www.suse.com/security/cve/CVE-2025-7425/ SUSE CVE CVE-2025-7425 page Container bci/bci-sle15-kernel-module-devel:latest Container bci/kiwi:latest Container bci/php-apache:latest Container bci/php-fpm:latest Container bci/php:latest Container suse/bind:latest Container suse/kiosk/xorg:latest Container suse/mariadb:latest Container suse/nginx:latest Container suse/pcp:latest Container suse/postgres:16 Container suse/postgres:latest Container suse/rmt-server:latest Container suse/samba-client:latest Container suse/samba-server:latest Container suse/samba-toolbox:latest Container suse/sle15:latest SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Enterprise Module for Python 3 15 SP7 libxml2-2-2.12.10-150700.4.6.1 libxml2-devel-2.12.10-150700.4.6.1 libxml2-tools-2.12.10-150700.4.6.1 libxml2-2-32bit-2.12.10-150700.4.6.1 libxml2-2-64bit-2.12.10-150700.4.6.1 libxml2-devel-32bit-2.12.10-150700.4.6.1 libxml2-devel-64bit-2.12.10-150700.4.6.1 libxml2-doc-2.12.10-150700.4.6.1 python3-libxml2-2.12.10-150700.4.6.1 python311-libxml2-2.12.10-150700.4.6.1 libxml2-2-2.12.10-150700.4.6.1 as a component of Container bci/bci-sle15-kernel-module-devel:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container bci/kiwi:latest libxml2-devel-2.12.10-150700.4.6.1 as a component of Container bci/kiwi:latest libxml2-tools-2.12.10-150700.4.6.1 as a component of Container bci/kiwi:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container bci/php-apache:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container bci/php-fpm:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container bci/php:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/bind:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/kiosk/xorg:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/mariadb:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/nginx:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/pcp:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/postgres:16 libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/postgres:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/rmt-server:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/samba-client:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/samba-server:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/samba-toolbox:latest libxml2-2-2.12.10-150700.4.6.1 as a component of Container suse/sle15:latest libxml2-2-2.12.10-150700.4.6.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 libxml2-2-32bit-2.12.10-150700.4.6.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 libxml2-devel-2.12.10-150700.4.6.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 libxml2-tools-2.12.10-150700.4.6.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 python3-libxml2-2.12.10-150700.4.6.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 python311-libxml2-2.12.10-150700.4.6.1 as a component of SUSE Linux Enterprise Module for Python 3 15 SP7 A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption. CVE-2025-7425 Container bci/bci-sle15-kernel-module-devel:latest:libxml2-2-2.12.10-150700.4.6.1 Container bci/kiwi:latest:libxml2-2-2.12.10-150700.4.6.1 Container bci/kiwi:latest:libxml2-devel-2.12.10-150700.4.6.1 Container bci/kiwi:latest:libxml2-tools-2.12.10-150700.4.6.1 Container bci/php-apache:latest:libxml2-2-2.12.10-150700.4.6.1 Container bci/php-fpm:latest:libxml2-2-2.12.10-150700.4.6.1 Container bci/php:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/bind:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/kiosk/xorg:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/mariadb:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/nginx:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/pcp:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/postgres:16:libxml2-2-2.12.10-150700.4.6.1 Container suse/postgres:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/rmt-server:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/samba-client:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/samba-server:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/samba-toolbox:latest:libxml2-2-2.12.10-150700.4.6.1 Container suse/sle15:latest:libxml2-2-2.12.10-150700.4.6.1 SUSE Linux Enterprise Module for Basesystem 15 SP7:libxml2-2-2.12.10-150700.4.6.1 SUSE Linux Enterprise Module for Basesystem 15 SP7:libxml2-2-32bit-2.12.10-150700.4.6.1 SUSE Linux Enterprise Module for Basesystem 15 SP7:libxml2-devel-2.12.10-150700.4.6.1 SUSE Linux Enterprise Module for Basesystem 15 SP7:libxml2-tools-2.12.10-150700.4.6.1 SUSE Linux Enterprise Module for Basesystem 15 SP7:python3-libxml2-2.12.10-150700.4.6.1 SUSE Linux Enterprise Module for Python 3 15 SP7:python311-libxml2-2.12.10-150700.4.6.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202502617-1/ https://www.suse.com/security/cve/CVE-2025-7425.html CVE-2025-7425 https://bugzilla.suse.com/1246296 SUSE Bug 1246296