[create-pull-request] automated change

Author: mbauman

advisories/published/2025/JLSEC-0000-mnsapzncq-17dqbmp.md

@@ -0,0 +1,24 @@
+```toml
+schema_version = "1.7.3"
+id = "JLSEC-0000-mnsapzncq-17dqbmp"
+modified = 2025-10-22T22:39:19.034Z
+upstream = ["CVE-2025-6021"]
+references = ["https://access.redhat.com/errata/RHSA-2025:10630", "https://access.redhat.com/errata/RHSA-2025:10698", "https://access.redhat.com/errata/RHSA-2025:10699", "https://access.redhat.com/errata/RHSA-2025:11580", "https://access.redhat.com/errata/RHSA-2025:12098", "https://access.redhat.com/errata/RHSA-2025:12099", "https://access.redhat.com/errata/RHSA-2025:12199", "https://access.redhat.com/errata/RHSA-2025:12237", "https://access.redhat.com/errata/RHSA-2025:12239", "https://access.redhat.com/errata/RHSA-2025:12240", "https://access.redhat.com/errata/RHSA-2025:12241", "https://access.redhat.com/errata/RHSA-2025:13267", "https://access.redhat.com/errata/RHSA-2025:13289", "https://access.redhat.com/errata/RHSA-2025:13325", "https://access.redhat.com/errata/RHSA-2025:13335", "https://access.redhat.com/errata/RHSA-2025:13336", "https://access.redhat.com/errata/RHSA-2025:14059", "https://access.redhat.com/errata/RHSA-2025:14396", "https://access.redhat.com/errata/RHSA-2025:15308", "https://access.redhat.com/errata/RHSA-2025:15672", "https://access.redhat.com/security/cve/CVE-2025-6021", "https://bugzilla.redhat.com/show_bug.cgi?id=2372406", "https://gitlab.gnome.org/GNOME/libxml2/-/issues/926"]
+
+[[affected]]
+pkg = "XML2_jll"
+ranges = ["< 2.14.4+0"]
+
+[[jlsec_sources]]
+id = "CVE-2025-6021"
+imported = 2025-10-22T22:39:19.034Z
+modified = 2025-10-22T13:08:44.160Z
+published = 2025-06-12T13:15:25.590Z
+url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-6021"
+html_url = "https://nvd.nist.gov/vuln/detail/CVE-2025-6021"
+```
+
+# A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calcula...
+
+A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.
+

advisories/published/2025/JLSEC-2025-66.md

@@ -12,7 +12,7 @@ ranges = ["< 2.9.10+0"]
 
 [[jlsec_sources]]
 id = "CVE-2019-19956"
-imported = 2025-10-17T17:21:54.213Z
+imported = 2025-10-22T22:39:17.325Z
 modified = 2024-11-21T04:35:44.420Z
 published = 2019-12-24T16:15:11.450Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2019-19956"

advisories/published/2025/JLSEC-2025-67.md

@@ -12,7 +12,7 @@ ranges = [">= 2.9.10+0, < 2.9.12+0"]
 
 [[jlsec_sources]]
 id = "CVE-2019-20388"
-imported = 2025-10-17T17:21:54.216Z
+imported = 2025-10-22T22:39:17.327Z
 modified = 2024-11-21T04:38:21.893Z
 published = 2020-01-21T23:15:13.553Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2019-20388"

advisories/published/2025/JLSEC-2025-68.md

@@ -12,7 +12,7 @@ ranges = [">= 2.9.10+0, < 2.9.12+0"]
 
 [[jlsec_sources]]
 id = "CVE-2020-7595"
-imported = 2025-10-17T17:21:54.217Z
+imported = 2025-10-22T22:39:17.329Z
 modified = 2024-11-21T05:37:26.453Z
 published = 2020-01-21T23:15:13.867Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2020-7595"

advisories/published/2025/JLSEC-2025-69.md

@@ -12,7 +12,7 @@ ranges = [">= 2.9.10+0, < 2.9.12+0"]
 
 [[jlsec_sources]]
 id = "CVE-2020-24977"
-imported = 2025-10-17T17:21:54.218Z
+imported = 2025-10-22T22:39:17.330Z
 modified = 2024-11-21T05:16:15.740Z
 published = 2020-09-04T00:15:10.693Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2020-24977"

advisories/published/2025/JLSEC-2025-70.md

@@ -12,7 +12,7 @@ ranges = ["< 2.9.12+0"]
 
 [[jlsec_sources]]
 id = "CVE-2021-3537"
-imported = 2025-10-17T17:21:54.219Z
+imported = 2025-10-22T22:39:17.331Z
 modified = 2024-11-21T06:21:47.317Z
 published = 2021-05-14T20:15:16.553Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2021-3537"

advisories/published/2025/JLSEC-2025-71.md

@@ -12,7 +12,7 @@ ranges = ["< 2.9.12+0"]
 
 [[jlsec_sources]]
 id = "CVE-2021-3518"
-imported = 2025-10-17T17:21:54.220Z
+imported = 2025-10-22T22:39:17.332Z
 modified = 2024-11-21T06:21:44.453Z
 published = 2021-05-18T12:15:08.043Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2021-3518"

advisories/published/2025/JLSEC-2025-72.md

@@ -12,7 +12,7 @@ ranges = ["< 2.9.12+0"]
 
 [[jlsec_sources]]
 id = "CVE-2021-3517"
-imported = 2025-10-17T17:21:54.221Z
+imported = 2025-10-22T22:39:17.333Z
 modified = 2024-11-21T06:21:44.107Z
 published = 2021-05-19T14:15:07.553Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2021-3517"

advisories/published/2025/JLSEC-2025-73.md

@@ -12,7 +12,7 @@ ranges = ["< 2.9.12+0"]
 
 [[jlsec_sources]]
 id = "CVE-2021-3541"
-imported = 2025-10-17T17:21:54.222Z
+imported = 2025-10-22T22:39:17.334Z
 modified = 2024-11-21T06:21:48.007Z
 published = 2021-07-09T17:15:07.973Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2021-3541"

advisories/published/2025/JLSEC-2025-74.md

@@ -12,7 +12,7 @@ ranges = ["< 2.9.14+0"]
 
 [[jlsec_sources]]
 id = "CVE-2022-23308"
-imported = 2025-10-17T17:21:54.223Z
+imported = 2025-10-22T22:39:17.335Z
 modified = 2025-05-05T17:17:56.523Z
 published = 2022-02-26T05:15:08.280Z
 url = "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2022-23308"