A moderate security update addresses CVE-2025-9714, an infinite recursion vulnerability in the `exsltDynMapFunction` function within libxml2's libexslt library. This update is available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Extended Update Support Long-Life Add-On. The specific fixed package versions are libxml2-2.9.7-9.el8_4.9 and related debug packages, as detailed in the advisory.
Red Hat Product Errata RHSA-2026:14832 - Security Advisory Issued: 2026-05-07 Updated: 2026-05-07 RHSA-2026:14832 - Security Advisory Overview Updated Packages Synopsis Moderate: libxml2 security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libxml2 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The libxml2 library is a development toolbox providing the implementation of various XML standards. Security Fix(es): libxslt: libxml2: Inifinite recursion at exsltDynMapFunction function in libexslt/dynamic.c (CVE-2025-9714) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 x86_64 Red Hat Enterprise Linux Server - AUS 8.4 x86_64 Fixes BZ - 2392605 - CVE-2025-9714 libxslt: libxml2: Inifinite recursion at exsltDynMapFunction function in libexslt/dynamic.c CVEs CVE-2025-9714 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 SRPM libxml2-2.9.7-9.el8_4.9.src.rpm SHA-256: 71c668aab168d2b05c022da890c62d39c0277926831cd5065e1a0d5f948e536b x86_64 libxml2-2.9.7-9.el8_4.9.i686.rpm SHA-256: d4ee62cb72e7cde27d29921aa31e2169d937a387cceae22b42eb787a585279eb libxml2-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 30a4e42b2099b53fc6a8bf0fd28be8b92b968749b1b6f3e1d83e43323717c5f6 libxml2-debuginfo-2.9.7-9.el8_4.9.i686.rpm SHA-256: 8393d7d773a6539d851d500fbc97afb6e8d052b709a52d6d2851b77d998575d6 libxml2-debuginfo-2.9.7-9.el8_4.9.i686.rpm SHA-256: 8393d7d773a6539d851d500fbc97afb6e8d052b709a52d6d2851b77d998575d6 libxml2-debuginfo-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 26838a808dd2d2481074123ee3b96d7c29dea5d716e75f79b1a46f6834e07f60 libxml2-debuginfo-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 26838a808dd2d2481074123ee3b96d7c29dea5d716e75f79b1a46f6834e07f60 libxml2-debugsource-2.9.7-9.el8_4.9.i686.rpm SHA-256: c1143b8d32bf7b5c6afe919ac225073c4baa2743ed16c8eac663ce27f00e7505 libxml2-debugsource-2.9.7-9.el8_4.9.i686.rpm SHA-256: c1143b8d32bf7b5c6afe919ac225073c4baa2743ed16c8eac663ce27f00e7505 libxml2-debugsource-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: bfbed09154b9774794ac08cbb3315c280d74f279b691f0d41675a8c977d17a15 libxml2-debugsource-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: bfbed09154b9774794ac08cbb3315c280d74f279b691f0d41675a8c977d17a15 libxml2-devel-2.9.7-9.el8_4.9.i686.rpm SHA-256: 73145a42f8dd53bb0a099cd915acde1a9706fe65a2dd7f8b8d32413d6e0c9cc0 libxml2-devel-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: d9d2e09097c902a351ef149e99d0a38bab0b22c5111e28d6d73d7425221a36da python3-libxml2-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 91671534d57afa11c61ee3d6188139463c2e86ceaae5ca7aaf66f1fffe59c68e python3-libxml2-debuginfo-2.9.7-9.el8_4.9.i686.rpm SHA-256: d668db3de1ff9373124f4bf0398fe7fd932f7a7be848165ef2a5452e5190481a python3-libxml2-debuginfo-2.9.7-9.el8_4.9.i686.rpm SHA-256: d668db3de1ff9373124f4bf0398fe7fd932f7a7be848165ef2a5452e5190481a python3-libxml2-debuginfo-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 9f638286cb929cdebb196f37613750bea5ed086290db58d1af96d6f3e9764625 python3-libxml2-debuginfo-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 9f638286cb929cdebb196f37613750bea5ed086290db58d1af96d6f3e9764625 Red Hat Enterprise Linux Server - AUS 8.4 SRPM libxml2-2.9.7-9.el8_4.9.src.rpm SHA-256: 71c668aab168d2b05c022da890c62d39c0277926831cd5065e1a0d5f948e536b x86_64 libxml2-2.9.7-9.el8_4.9.i686.rpm SHA-256: d4ee62cb72e7cde27d29921aa31e2169d937a387cceae22b42eb787a585279eb libxml2-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 30a4e42b2099b53fc6a8bf0fd28be8b92b968749b1b6f3e1d83e43323717c5f6 libxml2-debuginfo-2.9.7-9.el8_4.9.i686.rpm SHA-256: 8393d7d773a6539d851d500fbc97afb6e8d052b709a52d6d2851b77d998575d6 libxml2-debuginfo-2.9.7-9.el8_4.9.i686.rpm SHA-256: 8393d7d773a6539d851d500fbc97afb6e8d052b709a52d6d2851b77d998575d6 libxml2-debuginfo-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 26838a808dd2d2481074123ee3b96d7c29dea5d716e75f79b1a46f6834e07f60 libxml2-debuginfo-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 26838a808dd2d2481074123ee3b96d7c29dea5d716e75f79b1a46f6834e07f60 libxml2-debugsource-2.9.7-9.el8_4.9.i686.rpm SHA-256: c1143b8d32bf7b5c6afe919ac225073c4baa2743ed16c8eac663ce27f00e7505 libxml2-debugsource-2.9.7-9.el8_4.9.i686.rpm SHA-256: c1143b8d32bf7b5c6afe919ac225073c4baa2743ed16c8eac663ce27f00e7505 libxml2-debugsource-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: bfbed09154b9774794ac08cbb3315c280d74f279b691f0d41675a8c977d17a15 libxml2-debugsource-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: bfbed09154b9774794ac08cbb3315c280d74f279b691f0d41675a8c977d17a15 libxml2-devel-2.9.7-9.el8_4.9.i686.rpm SHA-256: 73145a42f8dd53bb0a099cd915acde1a9706fe65a2dd7f8b8d32413d6e0c9cc0 libxml2-devel-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: d9d2e09097c902a351ef149e99d0a38bab0b22c5111e28d6d73d7425221a36da python3-libxml2-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 91671534d57afa11c61ee3d6188139463c2e86ceaae5ca7aaf66f1fffe59c68e python3-libxml2-debuginfo-2.9.7-9.el8_4.9.i686.rpm SHA-256: d668db3de1ff9373124f4bf0398fe7fd932f7a7be848165ef2a5452e5190481a python3-libxml2-debuginfo-2.9.7-9.el8_4.9.i686.rpm SHA-256: d668db3de1ff9373124f4bf0398fe7fd932f7a7be848165ef2a5452e5190481a python3-libxml2-debuginfo-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 9f638286cb929cdebb196f37613750bea5ed086290db58d1af96d6f3e9764625 python3-libxml2-debuginfo-2.9.7-9.el8_4.9.x86_64.rpm SHA-256: 9f638286cb929cdebb196f37613750bea5ed086290db58d1af96d6f3e9764625 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .