python/python-lxml
SHA256
14
0
Fork 0
forked from pool/python-lxml
Code Pull Requests Activity

- update to 4.6.3:

Browse Source 
* A vulnerability (CVE-2021-28957) was discovered in the HTML Cleaner by Kevin Chung,
    which allowed JavaScript to pass through.  The cleaner now removes the HTML5
    ``formaction`` attribute.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-lxml?expand=0&rev=145
This commit is contained in:
Dirk Mueller
2021-04-06 01:54:45 +00:00
committed by Git OBS Bridge
parent fa2fc0c2a7
commit 34c29f33db
4 changed files with 12 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
python-lxml.changes
View File

@@ -1,3 +1,11 @@
-------------------------------------------------------------------
Tue Apr 6 01:51:29 UTC 2021 - Dirk Müller <dmueller@suse.com>
- update to 4.6.3:
* A vulnerability (CVE-2021-28957) was discovered in the HTML Cleaner by Kevin Chung,
which allowed JavaScript to pass through. The cleaner now removes the HTML5
``formaction`` attribute.
-------------------------------------------------------------------
Sun Jan 24 10:21:16 UTC 2021 - Dirk Müller <dmueller@suse.com>