Oval Definition:	oval:org.opensuse.security:def:94482
Revision Date: 2022-03-10 Version: 1 Title: (Important) Description: This update for python-lxml fixes the following issues: - CVE-2018-19787: Fixed XSS vulnerability via unescaped URL (bsc#1118088). - CVE-2021-28957: Fixed XSS vulnerability ia HTML5 attributes unescaped (bsc#1184177). - CVE-2021-43818: Fixed XSS vulnerability via script content in SVG images using data URIs (bnc#1193752). - CVE-2020-27783: Fixed mutation XSS with improper parser use (bnc#1179534). Family: unix Class: patch Status: Reference(s): 1118088 1179534 1180515 1184177 1193752 CVE-2018-19787 CVE-2020-12658 CVE-2020-27783 CVE-2021-28957 CVE-2021-43818 SUSE-SU-2021:1029-1 Platform(s): Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND gssproxy-0.8.2-3.6.1 is installed Definition Synopsis Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE is installed AND python3-lxml-4.7.1-3.7.1 is installed
BACK