CVE-2026-28348, CVE-2026-28350 (bsc#1259378, bsc#1259379) #2

Open

nkrapp wants to merge 1 commits from nkrapp/python-lxml_html_clean:leap-16.1 into leap-16.1

Author	SHA256	Message	Date
nkrapp	b0452fa25f	CVE-2026-28348, CVE-2026-28350 (bsc#1259378, bsc#1259379) - CVE-2026-28348: improper keywords checking can allow external CSS loading (bsc#1259378) * added CVE-2026-28348.patch - CVE-2026-28350: lack of base tag handling can allow the hijacking of the resolution of relative URLs (bsc#1259379) * added CVE-2026-28350.patch	2026-03-10 14:06:29 +01:00

Author

SHA256

Message

Date

nkrapp

b0452fa25f

CVE-2026-28348, CVE-2026-28350 (bsc#1259378, bsc#1259379)

- CVE-2026-28348: improper keywords checking can allow external CSS
loading (bsc#1259378)
  * added CVE-2026-28348.patch
- CVE-2026-28350: lack of base tag handling can allow the hijacking of
the resolution of relative URLs (bsc#1259379)
  * added CVE-2026-28350.patch

2026-03-10 14:06:29 +01:00

CVE-2026-28348, CVE-2026-28350 (bsc#1259378, bsc#1259379) #2

1 Commits