Critical Vulnerability Information Summary Advisory ID: RHSA-2025:12237 Release Date: 2025-07-30 Update Date: 2025-07-30 Type/Severity: Security Advisory - Important Subject Updates for libxml2 are now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Description Security Fixes: - CVE-2025-32414: Out-of-bounds read in libxml2 - CVE-2025-49794: Use-after-free (UAF) in libxml2 leading to Denial of Service (DoS) - CVE-2025-49796: Type confusion in libxml2 leading to Denial of Service (DoS) - CVE-2025-6021: Integer overflow in xmlBuildQName() in libxml2 causing stack buffer overflow Solution Reference Link: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - AUS 8.2 x86_64 Fixed Issues BZ-235812: CVE-2025-32414 libxml2: Out-of-bounds read BZ-2372373: CVE-2025-49794 libxml2: Use-after-free (UAF) leading to Denial of Service (DoS) BZ-2372385: CVE-2025-49796 libxml2: Type confusion leading to Denial of Service (DoS) BZ-2372406: CVE-2025-6021 libxml2: Integer overflow in xmlBuildQName() causing stack buffer overflow CVEs CVE-2025-6021 CVE-2025-32414 CVE-2025-49794 CVE-2025-49796 References https://access.redhat.com/security/updates/classification/#important