| Package | libxml2 |
|---|---|
| Version | 2.9.4+dfsg1-7+deb10u8 (buster) |
| Related CVEs | CVE-2016-9318 |
An XML External Entity (XXE) attack via crafted documents has been fixed in the XML library libxml2.
For Debian 10 buster, these problems have been fixed in version 2.9.4+dfsg1-7+deb10u8.
We recommend that you upgrade your libxml2 packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.