python/python-bleach
SHA256
14
0
Fork 0
forked from pool/python-bleach
Code Pull Requests Activity

Accepting request 589012 from home:kbabioch:branches:devel:languages:python

Browse Source 
- Update to version 2.1.3:
  * Attributes that have URI values weren't properly sanitized if the
    values contained character entities. Using character entities, it
    was possible to construct a URI value with a scheme that was not
    allowed that would slide through unsanitized.
    (CVE-2018-7753 bnc#1085969)

OBS-URL: https://build.opensuse.org/request/show/589012
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-bleach?expand=0&rev=18
This commit is contained in:
Tomáš Chvátal
2018-03-20 09:37:42 +00:00
committed by Git OBS Bridge
parent b910cc8b93
commit c2eee5a36f
4 changed files with 15 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
python-bleach.spec
View File

@@ -1,7 +1,7 @@
#
# spec file for package python-bleach
#
# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
# Copyright (c) 2015 LISA GmbH, Bingen, Germany.
#
# All modifications and additions to the file contributed by third parties
@@ -19,7 +19,7 @@
%{?!python_module:%define python_module() python-%{**} python3-%{**}}
Name: python-bleach
Version: 2.1.2
Version: 2.1.3
Release: 0
Summary: An easy whitelist-based HTML-sanitizing tool
License: Apache-2.0