- update to 3.1.3 (bsc#1167379, CVE-2020-6816):

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-bleach?expand=0&rev=34
This commit is contained in:
Dirk Mueller 2020-03-31 20:28:11 +00:00 committed by Git OBS Bridge
parent 2cc23971a9
commit e36ce7b3c2

View File

@ -1,7 +1,7 @@
------------------------------------------------------------------- -------------------------------------------------------------------
Mon Mar 23 10:09:15 UTC 2020 - Dirk Mueller <dmueller@suse.com> Mon Mar 23 10:09:15 UTC 2020 - Dirk Mueller <dmueller@suse.com>
- update to 3.1.3 (bsc#1167379): - update to 3.1.3 (bsc#1167379, CVE-2020-6816):
* Add relative link to code of conduct. (#442) * Add relative link to code of conduct. (#442)
* Drop deprecated 'setup.py test' support. (#507) * Drop deprecated 'setup.py test' support. (#507)
* Fix typo: curren -> current in tests/test_clean.py (#504) * Fix typo: curren -> current in tests/test_clean.py (#504)
@ -15,8 +15,6 @@ Mon Mar 23 10:09:15 UTC 2020 - Dirk Mueller <dmueller@suse.com>
``noscript``, ``style``, ``noframes``, ``iframe``, ``noembed``, or ``noscript``, ``style``, ``noframes``, ``iframe``, ``noembed``, or
``xmp`` in the allowed tags whitelist were vulnerable to a mutation ``xmp`` in the allowed tags whitelist were vulnerable to a mutation
XSS. XSS.
This security issue was confirmed in Bleach version v3.1.1. Earlier
versions are likely affected too.
------------------------------------------------------------------- -------------------------------------------------------------------
Fri Feb 28 16:13:43 UTC 2020 - Alexandros Toptsoglou <atoptsoglou@suse.com> Fri Feb 28 16:13:43 UTC 2020 - Alexandros Toptsoglou <atoptsoglou@suse.com>