HCE2-SA-2023-0205 Moderate HCE 2.0 Security Fix(es): In libxml2 before 2.10.4, parsing of certain invalid XSD schemas can lead to a NULL pointer dereference and subsequently a segfault. This occurs in xmlSchemaFixupComplexType in xmlschemas.c. (CVE-2023-28484) An issue was discovered in libxml2 before 2.10.4. When hashing empty dict strings in a crafted XML document, xmlDictComputeFastKey in dict.c can produce non-deterministic values, leading to various logic and memory errors, such as a double free. This behavior occurs because there is an attempt to use the first byte of an empty string, and any value is possible (not solely the '\0' value). (CVE-2023-29469) HCE 2.0 libxml2-2.9.12-5.r20.hce2.aarch64.rpm libxml2-devel-2.9.12-5.r20.hce2.aarch64.rpm libxml2-help-2.9.12-5.r20.hce2.noarch.rpm python3-libxml2-2.9.12-5.r20.hce2.aarch64.rpm libxml2-2.9.12-5.r20.hce2.x86_64.rpm libxml2-devel-2.9.12-5.r20.hce2.x86_64.rpm python3-libxml2-2.9.12-5.r20.hce2.x86_64.rpm