Oval Definition:	oval:org.opensuse.security:def:94275
Revision Date: 2022-03-10 Version: 1 Title: (Important) Description: This update for python-lxml fixes the following issues: - CVE-2018-19787: Fixed XSS vulnerability via unescaped URL (bsc#1118088). - CVE-2021-28957: Fixed XSS vulnerability ia HTML5 attributes unescaped (bsc#1184177). - CVE-2021-43818: Fixed XSS vulnerability via script content in SVG images using data URIs (bnc#1193752). - CVE-2020-27783: Fixed mutation XSS with improper parser use (bnc#1179534). Family: unix Class: patch Status: Reference(s): 1118088 1179534 1184177 1193752 CVE-2016-10198 CVE-2016-10199 CVE-2017-5837 CVE-2017-5838 CVE-2017-5839 CVE-2017-5840 CVE-2017-5841 CVE-2017-5842 CVE-2017-5843 CVE-2017-5844 CVE-2017-5845 CVE-2017-5846 CVE-2017-5847 CVE-2017-5848 CVE-2018-19787 CVE-2020-27783 CVE-2021-28957 CVE-2021-43818 Platform(s): Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND libgstreamer-1_0-0-32bit-1.16.2-1.53 is installed Definition Synopsis Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 is installed AND python3-lxml-4.7.1-3.7.1 is installed
BACK