Overview Repositories Revisions Requests Users Attributes Meta

Revisions of python-lxml

Jeremy Moffitt's avatar Jeremy Moffitt (jeremy_moffitt) accepted request 967839 from Earl Sampson's avatar Earl Sampson (esampson) (revision 4) 
- Fix bsc#1179534 (CVE-2020-27783)
  mXSS due to the use of improper parser 
  Patch files: 0001-CVE-2020-27783.patch 0002-CVE-2020-27783.patch
- Fix bsc#1118088 (CVE-2018-19787)
  lxml/html/clean.py in the lxml.html.clean module does not remove
  javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks
  Patch file: 0001-CVE-2018-19787.patch
- Fix bsc#1184177 (CVE-2021-28957)
  missing input sanitization for formaction HTML5 attributes may lead to XSS
  Patch file: 0001-CVE-2021-28957.patch
- Fix bsc#1193752 (CVE-2021-43818)
  Cleaner: Remove SVG image data URLs since they can embed script content.
  Reported as GHSL-2021-1037 and GHSL-2021-1038 
  Patch files 0001-CVE-2021-43818.patch 0002-CVE-2021-43818.patch
Dirk Mueller's avatar Dirk Mueller (dirkmueller) committed (revision 3) 
osc copypac from project:devel:languages:python:backports package:python-lxml revision:2, using expand
Dirk Mueller's avatar Dirk Mueller (dirkmueller) committed (revision 2) 
osc copypac from project:devel:languages:python:backports package:python-lxml revision:2, using expand
Johannes Grassler's avatar Johannes Grassler (jgrassler) committed (revision 1) 
osc copypac from project:Cloud:OpenStack:Master package:python-lxml revision:4, using expand
Displaying all 4 revisions
openSUSE Build Service is sponsored by
Places