lxml 4.6.3-1ubuntu0.2 source package in Ubuntu
Changelog
lxml (4.6.3-1ubuntu0.2) hirsute-security; urgency=medium
* SECURITY UPDATE: XSS vulnerability
- debian/patches/CVE-2021-43818-*.patch: prevent "@import"
from re-occurring in the CSS after replacements and remove
SVG image data URLs since they can embed script content in
src/lxml/html/clean.py, src/html/tests/test_clean.py.
- CVE-2021-43818
-- Leonidas Da Silva Barbosa <email address hidden> Tue, 04 Jan 2022 09:22:22 -0300
Upload details
- Uploaded by:
- Leonidas S. Barbosa
- Uploaded to:
- Hirsute
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| lxml_4.6.3.orig.tar.gz | 926.7 KiB | 5955ed615b7be9407d9eab83edde8f1818c94224d762d1d6355bf0371f220bd6 |
| lxml_4.6.3-1ubuntu0.2.debian.tar.xz | 9.3 KiB | 85f67e0f5b06819037b5c9313e40820d7ac523502ad5dda7c52e124da48c65fd |
| lxml_4.6.3-1ubuntu0.2.dsc | 2.1 KiB | 36ca1dc0a3e773518651e0a2126325cb2aa1a8818c724a2936648407c3ea0860 |
Available diffs
- diff from 4.6.3-1ubuntu0.1 to 4.6.3-1ubuntu0.2 (500 bytes)
Binary packages built by this source
- python-lxml-doc: No summary available for python-lxml-doc in ubuntu hirsute.
No description available for python-lxml-doc in ubuntu hirsute.
- python3-lxml: No summary available for python3-lxml in ubuntu hirsute.
No description available for python3-lxml in ubuntu hirsute.
- python3-lxml-dbg: No summary available for python3-lxml-dbg in ubuntu hirsute.
No description available for python3-lxml-dbg in ubuntu hirsute.
