OVAL Reference oval:org.opensuse.security:def:93169

Oval Definition:

oval:org.opensuse.security:def:93169

Revision Date:	2022-03-10	Version:	1
Title:	(Important)
Description:	This update for python-lxml fixes the following issues: - CVE-2018-19787: Fixed XSS vulnerability via unescaped URL (bsc#1118088). - CVE-2021-28957: Fixed XSS vulnerability ia HTML5 attributes unescaped (bsc#1184177). - CVE-2021-43818: Fixed XSS vulnerability via script content in SVG images using data URIs (bnc#1193752). - CVE-2020-27783: Fixed mutation XSS with improper parser use (bnc#1179534).
Family:	unix	Class:	patch
Status:		Reference(s):	1118088 1179534 1182066 1184177 1193752 CVE-2018-19787 CVE-2020-27783 CVE-2020-36242 CVE-2021-28957 CVE-2021-43818 SUSE-SU-2021:0696-1
Platform(s):	Image SLES15-SP4-Manager-Proxy-4-3-BYOS SUSE Manager Retail Branch Server 4.0	Product(s):
Definition Synopsis
Image SLES15-SP4-Manager-Proxy-4-3-BYOS is installed AND python3-lxml-4.7.1-3.7.1 is installed
Definition Synopsis
SUSE Manager Retail Branch Server 4.0 is installed AND Package Information python2-cryptography-2.1.4-4.9.2 is installed OR python3-cryptography-2.1.4-4.9.2 is installed