openSUSE 16 Security Update : python-weasyprint (openSUSE-SU-2026:20069-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:20069-1 advisory. Changes in python-weasyprint: - CVE-2025-68616: Fixed a server-side request forgery in default fetcher boo1256936. Tenable has extracted the preceding...

Security update for python-weasyprint (important)

openSUSE security update: security update for python-weasyprint ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20069-1 Rating: important References: bsc1256936 Cross-References: CVE-2025-68616 CVSS scores: CVE-2025-68616 SUSE : 7.5...

OPENSUSE-SU-2026:20069-1 Security update for python-weasyprint

This update for python-weasyprint fixes the following issues: Changes in python-weasyprint: - CVE-2025-68616: Fixed a server-side request forgery in default fetcher boo1256936...

WeasyPrint has a Server-Side Request Forgery (SSRF) Protection Bypass via HTTP Redirect

Summary A Server-Side Request Forgery SSRF Protection Bypass exists in WeasyPrint's defaulturlfetcher. The vulnerability allows attackers to access internal network resources such as localhost services or cloud metadata endpoints even when a developer has implemented a custom urlfetcher to block...