logo
DATABASE RESOURCES PRICING ABOUT US

(RHSA-2020:5571) Moderate: python-XStatic-Bootstrap-SCSS security update

Description

python-XStatic-Bootstrap-SCSS is the Bootstrap-SCSS JavaScript library packaged for setuptools / pip. Security Fix(es): * XSS in the data-target attribute (CVE-2016-10735) * Cross-site Scripting (XSS) in the data-container property of tooltip (CVE-2018-14042) * XSS in the tooltip data-viewport attribute (CVE-2018-20676) * XSS in the affix configuration target property (CVE-2018-20677) * XSS in the tooltip or popover data-template attribute (CVE-2019-8331) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.


Affected Package


OS OS Version Package Name Package Version
RedHat 7 xstatic-bootstrap-scss-common 3.4.1.0-1.el7ost
RedHat 7 python-xstatic-bootstrap-scss 3.4.1.0-1.el7ost
RedHat 7 python-xstatic-bootstrap-scss 3.4.1.0-1.el7ost

Related