Oval Definition:oval:org.opensuse.security:def:94061
Revision Date:2022-03-10Version:1
Title: (Important)
Description:

This update for python-lxml fixes the following issues:

- CVE-2018-19787: Fixed XSS vulnerability via unescaped URL (bsc#1118088). - CVE-2021-28957: Fixed XSS vulnerability ia HTML5 attributes unescaped (bsc#1184177). - CVE-2021-43818: Fixed XSS vulnerability via script content in SVG images using data URIs (bnc#1193752). - CVE-2020-27783: Fixed mutation XSS with improper parser use (bnc#1179534).
Family:unixClass:patch
Status:Reference(s):1118088
1179534
1184177
1193752
CVE-2017-13738
CVE-2017-13739
CVE-2017-13740
CVE-2017-13741
CVE-2017-13742
CVE-2017-13743
CVE-2017-13744
CVE-2018-11410
CVE-2018-11440
CVE-2018-11683
CVE-2018-11684
CVE-2018-11685
CVE-2018-12085
CVE-2018-19787
CVE-2020-27783
CVE-2021-28957
CVE-2021-43818
Platform(s):Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • liblouis-data-3.11.0-1.42 is installed
  • OR liblouis-devel-3.11.0-1.42 is installed
  • OR liblouis19-3.11.0-1.42 is installed
  • OR python3-louis-3.11.0-1.42 is installed
  • Definition Synopsis
  • Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure is installed
  • AND python3-lxml-4.7.1-3.7.1 is installed
  • BACK