Oval Definition:oval:org.opensuse.security:def:93849
Revision Date:2022-03-10Version:1
Title: (Important)
Description:

This update for python-lxml fixes the following issues:

- CVE-2018-19787: Fixed XSS vulnerability via unescaped URL (bsc#1118088). - CVE-2021-28957: Fixed XSS vulnerability ia HTML5 attributes unescaped (bsc#1184177). - CVE-2021-43818: Fixed XSS vulnerability via script content in SVG images using data URIs (bnc#1193752). - CVE-2020-27783: Fixed mutation XSS with improper parser use (bnc#1179534).
Family:unixClass:patch
Status:Reference(s):1118088
1179534
1184177
1193752
CVE-2015-5621
CVE-2018-19787
CVE-2020-27783
CVE-2021-28957
CVE-2021-43818
Platform(s):Image SLES15-SP4-Manager-Server-4-3-BYOS
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libsnmp30-5.7.3-8.24 is installed
  • OR net-snmp-5.7.3-8.24 is installed
  • OR net-snmp-devel-5.7.3-8.24 is installed
  • OR perl-SNMP-5.7.3-8.24 is installed
  • OR snmp-mibs-5.7.3-8.24 is installed
  • Definition Synopsis
  • Image SLES15-SP4-Manager-Server-4-3-BYOS is installed
  • AND python3-lxml-4.7.1-3.7.1 is installed
  • BACK