logo
DATABASE RESOURCES PRICING ABOUT US

Fedora 28 : python-bleach (2018-994424b810)

Description

Version 2.1.3 (March 5th, 2018) ------------------------------- **Security fixes** - Attributes that have URI values weren't properly sanitized if the values contained character entities. Using character entities, it was possible to construct a URI value with a scheme that was not allowed that would slide through unsanitized. This security issue was introduced in Bleach 2.1. Anyone using Bleach 2.1 is highly encouraged to upgrade. **Backwards incompatible changes** None **Features** None **Bug fixes** - Fixed some other edge cases for attribute URI value sanitizing and improved testing of this code. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.


Related