python/python-lxml
SHA256
14
0
Fork 0
forked from pool/python-lxml
Code Pull Requests Activity

- update to 4.6.5 (bsc#1193752, CVE-2021-43818):

Browse Source 
* A vulnerability (GHSL-2021-1038) in the HTML cleaner allowed sneaking script
    content through SVG images.
  * A vulnerability (GHSL-2021-1037) in the HTML cleaner allowed sneaking script
    content through CSS imports and other crafted constructs.

OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-lxml?expand=0&rev=152
This commit is contained in:
Dirk Mueller
2022-01-04 16:09:19 +00:00
committed by Git OBS Bridge
parent 10a671eb87
commit 6e45e62782
4 changed files with 14 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
python-lxml.changes
View File

@@ -1,3 +1,12 @@
-------------------------------------------------------------------
Tue Jan 4 16:03:54 UTC 2022 - Dirk Müller <dmueller@suse.com>
- update to 4.6.5 (bsc#1193752, CVE-2021-43818):
* A vulnerability (GHSL-2021-1038) in the HTML cleaner allowed sneaking script
content through SVG images.
* A vulnerability (GHSL-2021-1037) in the HTML cleaner allowed sneaking script
content through CSS imports and other crafted constructs.
-------------------------------------------------------------------
Wed Nov 24 21:23:34 UTC 2021 - Dirk Müller <dmueller@suse.com>