pool/python-bleach
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
25 Commits 1 Branch 0 Tags 109 KiB
Diff 100%
2cc23971a9
Go to file
Dirk Mueller 2cc23971a9 - update to 3.1.3 (bsc#1167379): 
* Add relative link to code of conduct. (#442)
  * Drop deprecated 'setup.py test' support. (#507)
  * Fix typo: curren -> current in tests/test_clean.py (#504)
  * Test on PyPy 7
  * Drop test support for end of life Python 3.4
  * ``bleach.clean`` behavior parsing embedded MathML and SVG content
    with RCDATA tags did not match browser behavior and could result in
    a mutation XSS.
    Calls to ``bleach.clean`` with ``strip=False`` and ``math`` or
    ``svg`` tags and one or more of the RCDATA tags ``script``,
    ``noscript``, ``style``, ``noframes``, ``iframe``, ``noembed``, or
    ``xmp`` in the allowed tags whitelist were vulnerable to a mutation
    XSS.
    This security issue was confirmed in Bleach version v3.1.1. Earlier
    versions are likely affected too.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-bleach?expand=0&rev=32
2020-03-23 10:22:56 +00:00
.gitattributes Accepting request 235461 from home:frispete:python 2014-06-02 09:05:03 +00:00
.gitignore Accepting request 235461 from home:frispete:python 2014-06-02 09:05:03 +00:00
bleach-3.1.3.tar.gz - update to 3.1.3 (bsc#1167379): 2020-03-23 10:22:56 +00:00
de-vendor.patch - update to 3.1.3 (bsc#1167379): 2020-03-23 10:22:56 +00:00
python-bleach.changes - update to 3.1.3 (bsc#1167379): 2020-03-23 10:22:56 +00:00
python-bleach.spec - update to 3.1.3 (bsc#1167379): 2020-03-23 10:22:56 +00:00