pool/python-lxml_html_clean
SHA256
17
0
Fork 2
Code Issues Pull Requests 1 Activity

CVE-2026-28348, CVE-2026-28350 (bsc#1259378, bsc#1259379)

Browse Source 
- CVE-2026-28348: improper keywords checking can allow external CSS
loading (bsc#1259378)
  * added CVE-2026-28348.patch
- CVE-2026-28350: lack of base tag handling can allow the hijacking of
the resolution of relative URLs (bsc#1259379)
  * added CVE-2026-28350.patch
This commit is contained in:
Nico Krapp
2026-03-10 14:03:55 +01:00
parent d299ec82fb
commit b0452fa25f
4 changed files with 215 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
python-lxml_html_clean.changes
View File

@@ -1,3 +1,13 @@
-------------------------------------------------------------------
Tue Mar 10 12:59:11 UTC 2026 - Nico Krapp <nico.krapp@suse.com>
- CVE-2026-28348: improper keywords checking can allow external CSS loading
(bsc#1259378)
* added CVE-2026-28348.patch
- CVE-2026-28350: lack of base tag handling can allow the hijacking of the
resolution of relative URLs (bsc#1259379)
* added CVE-2026-28350.patch
-------------------------------------------------------------------
Fri Apr 11 20:57:19 UTC 2025 - Dirk Müller <dmueller@suse.com>