address review feedback from https://build.opensuse.org/request/show/790090

- update to 3.1.3 (bsc#1167379, CVE-2020-6816): OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-bleach?expand=0&rev=34
2020-03-31 20:28:11 +00:00 · 2020-03-31 20:28:11 +00:00 · e36ce7b3c2
commit e36ce7b3c2
parent 2cc23971a9
1 changed files with 1 additions and 3 deletions
--- a/python-bleach.changes
+++ b/python-bleach.changes
@ -1,7 +1,7 @@
 -------------------------------------------------------------------
 Mon Mar 23 10:09:15 UTC 2020 - Dirk Mueller <dmueller@suse.com>

- update to 3.1.3 (bsc#1167379):
+- update to 3.1.3 (bsc#1167379, CVE-2020-6816):
  * Add relative link to code of conduct. (#442)
  * Drop deprecated 'setup.py test' support. (#507)
  * Fix typo: curren -> current in tests/test_clean.py (#504)
@ -15,8 +15,6 @@ Mon Mar 23 10:09:15 UTC 2020 - Dirk Mueller <dmueller@suse.com>
    ``noscript``, ``style``, ``noframes``, ``iframe``, ``noembed``, or
    ``xmp`` in the allowed tags whitelist were vulnerable to a mutation
    XSS.
-    This security issue was confirmed in Bleach version v3.1.1. Earlier
-    versions are likely affected too.

 -------------------------------------------------------------------
 Fri Feb 28 16:13:43 UTC 2020 - Alexandros Toptsoglou <atoptsoglou@suse.com>