-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sun, 07 Jun 2026 17:53:53 +0200 Source: libxml2 Binary: libxml2-doc Architecture: all Version: 2.9.14+dfsg-1.3~deb12u6 Distribution: bookworm Urgency: high Maintainer: all Build Daemon (x86-grnet-02) Changed-By: Guilhem Moulin Description: libxml2-doc - GNOME XML library - documentation Closes: 1125691 1125695 1125696 Changes: libxml2 (2.9.14+dfsg-1.3~deb12u6) bookworm; urgency=high . * Non-maintainer upload. * Fix CVE-2026-0989: Specially crafted or overly complex schemas can cause excessive recursion during parsing, which may lead to stack exhaustion and application crashes. The parser now enforces a limit on inclusion depth when resolving nested `` directives; the limit defaults to 1000 and can be modified at runtime with the env variable `RNG_INCLUDE_LIMIT`. (Closes: #1125691) * Fix CVE-2026-0990: `xmlCatalogXMLResolveURI()` will recurse infinitely if a catalog has a URI delegate referencing itself, eventually resulting in a call stack overflow. (Closes: #1125695) * Fix CVE-2026-0992: Denial of Service vulnerability due to uncontrolled resource consumption when processing XML catalogs containing repeated `` elements pointing to the same downstream catalog. (Closes: #1125696) * Fix CVE-2025-8732: When a catalog file contains a CATALOG directive pointing to itself, `xmlExpandCatalog()` and `xmlParseSGMLCatalog()` recursively call each other without bounds until stack overflow. * Fix CVE-2026-1757: Memory leak issue in the command parsing logic of the xmllint interactive shell. * Fix unit tests for CVE-2025-49794 and -49796. * Backport some more upstream changes from v2.15.2: + Fix memory leak of prefix in `xmlTextWriterStartElementNS()`. + Mitigate use-after-free issue in `xmlRelaxNGValidateValue()`. + Fix memory leak in `xmlTextWriterStartAttributeNS()`. + Schematron: Fix additional memory leaks on error paths. + Catalog: Fix stack overflow from self-referencing SGML CATALOG entries. Checksums-Sha1: 1e409a7c88d7f1bad2d02e4d1829e98a717a4f30 667860 libxml2-doc_2.9.14+dfsg-1.3~deb12u6_all.deb b61f38529fbbfd72f00cb45deb953ed20413780a 6110 libxml2_2.9.14+dfsg-1.3~deb12u6_all-buildd.buildinfo Checksums-Sha256: 8486737517ee8ed034906f7498f11b5c73337463d736510789cb3fd90bc09367 667860 libxml2-doc_2.9.14+dfsg-1.3~deb12u6_all.deb dc012b950cc9094f7687777b35d7d4402174cefbb5f17711a8355dce45737468 6110 libxml2_2.9.14+dfsg-1.3~deb12u6_all-buildd.buildinfo Files: cd03acee7194331a559efd2583892cab 667860 doc optional libxml2-doc_2.9.14+dfsg-1.3~deb12u6_all.deb 598933460bfb4556ba5f33dee8bc1eb8 6110 libs optional libxml2_2.9.14+dfsg-1.3~deb12u6_all-buildd.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE81O8NL+3kjBAqEvLmgPNRvTf/zcFAmooabQACgkQmgPNRvTf /zdEtQ//e9Z5Di72692KQPiBeJhXD65N1Wb2hgIGJ+Np+U36L5EUyJDLwEj/R7Y9 jBH/tkrsoMoV34oOBNJBB6kjJ0nGomXOWcuYWH2ZEimfsupRO4SE+1NTBUc3SPRy +RDEZHxDdNv4Ue4wQrQjHp4v4PitRc8GlZT2CB+1WIMXx8OknDj3O/wl5M2mUYw7 efzuVqtDCzT1Iouiknpg2Tr/WayyqosEL320ImUvHuh4yzuiL2Z5HNb+1TtvdyYM 76YA4pY+F+XaiVBnXkmeP6B8bq8a6fRSGaSH31EdtrMooznmtJMjqrtqmAuMUbf1 Imf630zujn8VibKLkGXLIsnlbW5kxZTHTXtMAobs1orcTG6A8E/3AC9JUUAmp3CG ivob6e7f50eZY3mq8EVG5t+kwRW0n7wrZ0qFZS6BDKxyOTyYe2EFUo+af++z/QdZ riygMq7mAsL+yg5NmsxPavewpwoGf3zdld8vXUaobwBaTlBsqknXZui/PjOUAE6w HJ6XJ2FK6O1miIJ2xhL3NbMb1K+tXd44sqng1Kkn0uuwWhSQUThCAMoQBWTyxEpE rqnUFch7OgROlOnAekrnctawtjRl3uh1CaoS8pamtIBTXWSWGxkckdNC4SU7IQX7 VB8eEBUC3uFlbQ1R33qJQHc1nZDb7WKopjqTWgLkdsGPt6hSs9s= =cuYl -----END PGP SIGNATURE-----