ELA-656-1 libxml2 security update

cross-site scripting vulnerability

2022-08-03
Packagelibxml2
Version2.9.4+dfsg1-2.2+deb9u8 (stretch)
Related CVEs CVE-2016-3709

A cross-site scripting vulnerability was discovered in libxml2, a widely used XML parsing library.

For Debian 9 stretch, these problems have been fixed in version 2.9.4+dfsg1-2.2+deb9u8.

We recommend that you upgrade your libxml2 packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/