1. Fixed security vulnerabilities
CVE-2021-3516
Description: libxml2 is an open source function library for parsing XML documents. It is written in C language and can be called by many languages, such as C language, C++, XSH. The xmllint tool of the libxml2 component has a heap-use-after-free flaw, which affects the confidentiality and integrity of the system.
2. Affected software packages
libxml2 <= 2.9.10+dfsg-ok1
3. Software package repair version
libxml2 >= 2.9.10+dfsg-ok2
4. Repair method
Method 1: Configure the openKylin software source (mirroring the source configured by default)
deb http://archive.build.openkylin.top/openkylin/ yangtze main cross pty
deb http://archive.build.openkylin.top/openkylin/ yangtze-security main cross pty
deb http://archive.build.openkylin.top/openkylin/ yangtze-updates main cross pty
After the configuration is complete, execute the command to update the software package:
sudo apt update
sudo apt install libxml2
Method 2: Download the software package from the software package download address and install it
sudo dpkg -i libxml2_2.9.10+dfsg-ok2_amd64.deb
5. Software package download address
6. Repair verification
Use the software package query command to check whether the version of the relevant software package is consistent with the repaired version. If the versions are the same, the repair is successful.
dpkg -l libxml2