Bug 1224282

Summary: VUL-0: CVE-2024-34459: libxml2: libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c
Product: [Novell Products] SUSE Security Incidents Reporter: Camila Camargo de Matos <camila.matos>
Component: IncidentsAssignee: Security Team bot <security-team>
Status: IN_PROGRESS --- QA Contact: Security Team bot <security-team>
Severity: Minor    
Priority: P3 - Medium CC: camila.matos, security-team, smash_bz
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://smash.suse.de/issue/405285/
Whiteboard:
Found By: Security Response Team Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Bug Depends on:    
Bug Blocks: 1224281    

Description Camila Camargo de Matos 2024-05-15 11:03:09 UTC 
+++ This bug was initially created as a clone of Bug #1224281 +++

An issue was discovered in xmllint (from libxml2) before 2.11.8 and 2.12.x before 2.12.7. Formatting error messages with xmllint --htmlout can result in a buffer over-read in xmlHTMLPrintFileContext in xmllint.c.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-34459
https://www.cve.org/CVERecord?id=CVE-2024-34459
https://gitlab.gnome.org/GNOME/libxml2/-/issues/720
https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.11.8
https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.7
https://bugzilla.redhat.com/show_bug.cgi?id=2280532
https://jira.suse.com/browse/CAR-3459
Comment 2 David Anes 2024-06-25 08:37:10 UTC 
Working on this one.

As soon as I finish it we can close also #1224281 and #1224283.
Comment 4 David Anes 2024-07-01 11:59:43 UTC 
All codestreams are fixed. Waiting for the updates to popup to send it back to security..
Comment 6 Camila Camargo de Matos 2024-07-01 14:59:40 UTC 
*** Bug 1224283 has been marked as a duplicate of this bug. ***
Comment 7 Maintenance Automation 2024-07-02 12:30:15 UTC 
SUSE-SU-2024:2267-1: An update that solves one vulnerability can now be installed.

Category: security (low)
Bug References: 1224282
CVE References: CVE-2024-34459
Maintenance Incident: [SUSE:Maintenance:34539](https://smelt.suse.de/incident/34539/)
Sources used:
openSUSE Leap 15.5 (src):
 python-libxml2-python-2.9.7-150000.3.70.1
openSUSE Leap 15.6 (src):
 python-libxml2-python-2.9.7-150000.3.70.1
SUSE Linux Enterprise Micro 5.1 (src):
 libxml2-2.9.7-150000.3.70.1
SUSE Linux Enterprise Micro 5.2 (src):
 libxml2-2.9.7-150000.3.70.1, python-libxml2-python-2.9.7-150000.3.70.1
SUSE Linux Enterprise Micro for Rancher 5.2 (src):
 libxml2-2.9.7-150000.3.70.1, python-libxml2-python-2.9.7-150000.3.70.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 8 Maintenance Automation 2024-07-02 20:30:08 UTC 
SUSE-SU-2024:2279-1: An update that solves one vulnerability can now be installed.

Category: security (low)
Bug References: 1224282
CVE References: CVE-2024-34459
Maintenance Incident: [SUSE:Maintenance:34535](https://smelt.suse.de/incident/34535/)
Sources used:
openSUSE Leap 15.4 (src):
 libxml2-python-2.9.14-150400.5.32.1, libxml2-2.9.14-150400.5.32.1
SUSE Linux Enterprise Micro for Rancher 5.3 (src):
 libxml2-python-2.9.14-150400.5.32.1, libxml2-2.9.14-150400.5.32.1
SUSE Linux Enterprise Micro 5.3 (src):
 libxml2-python-2.9.14-150400.5.32.1, libxml2-2.9.14-150400.5.32.1
SUSE Linux Enterprise Micro for Rancher 5.4 (src):
 libxml2-python-2.9.14-150400.5.32.1, libxml2-2.9.14-150400.5.32.1
SUSE Linux Enterprise Micro 5.4 (src):
 libxml2-python-2.9.14-150400.5.32.1, libxml2-2.9.14-150400.5.32.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 9 Maintenance Automation 2024-07-03 08:30:07 UTC 
SUSE-SU-2024:2288-1: An update that solves one vulnerability can now be installed.

Category: security (low)
Bug References: 1224282
CVE References: CVE-2024-34459
Maintenance Incident: [SUSE:Maintenance:34538](https://smelt.suse.de/incident/34538/)
Sources used:
SUSE Linux Enterprise Software Development Kit 12 SP5 (src):
 libxml2-2.9.4-46.75.1
SUSE Linux Enterprise High Performance Computing 12 SP5 (src):
 libxml2-2.9.4-46.75.1, python-libxml2-2.9.4-46.75.1
SUSE Linux Enterprise Server 12 SP5 (src):
 libxml2-2.9.4-46.75.1, python-libxml2-2.9.4-46.75.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src):
 libxml2-2.9.4-46.75.1, python-libxml2-2.9.4-46.75.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 10 Maintenance Automation 2024-07-03 12:30:48 UTC 
SUSE-SU-2024:2290-1: An update that solves one vulnerability can now be installed.

Category: security (low)
Bug References: 1224282
CVE References: CVE-2024-34459
Maintenance Incident: [SUSE:Maintenance:34533](https://smelt.suse.de/incident/34533/)
Sources used:
openSUSE Leap 15.5 (src):
 libxml2-2.10.3-150500.5.17.1, libxml2-python-2.10.3-150500.5.17.1
openSUSE Leap 15.6 (src):
 libxml2-2.10.3-150500.5.17.1, libxml2-python-2.10.3-150500.5.17.1
SUSE Linux Enterprise Micro 5.5 (src):
 libxml2-2.10.3-150500.5.17.1, libxml2-python-2.10.3-150500.5.17.1
Basesystem Module 15-SP5 (src):
 libxml2-2.10.3-150500.5.17.1, libxml2-python-2.10.3-150500.5.17.1
Basesystem Module 15-SP6 (src):
 libxml2-2.10.3-150500.5.17.1, libxml2-python-2.10.3-150500.5.17.1
Python 3 Module 15-SP5 (src):
 libxml2-python-2.10.3-150500.5.17.1
Python 3 Module 15-SP6 (src):
 libxml2-python-2.10.3-150500.5.17.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.