Debian DLA-2620-1 : python-bleach security update

It was discovered that there was a cross-site scripting XSS vulnerability in python-bleach, a whitelist-based HTML sanitisation library. For Debian 9 'Stretch', this problem has been fixed in version 2.0-1+deb9u1. We recommend that you upgrade your python-bleach packages. For the detailed securit...

Debian: Security Advisory (DLA-2620-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 2620-1] python-bleach security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2620-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb April 06, 2021 https://wiki.debian.org/LTS -...

Python Bleach 跨站脚本漏洞

Python Bleach is a Python based HTML cleanup library. Python Bleach suffers from a cross-site scripting vulnerability that can be exploited by an attacker to trigger cross-site scripting in order to run JavaScript code in the context of a website...

DLA-2620-1 python-bleach - security update

Bulletin has no description...

Fedora: Security Advisory for python-bleach (FEDORA-2020-e0f35d634c)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 33 Update: python-bleach-3.2.1-1.fc33

Bleach is an HTML sanitizing library that escapes or strips markup and attributes based on a white list...

The vulnerability of the library for cleaning HTML-based text using python-bleach allows a attacker to compromise data integrity.

The vulnerability of the Python-bleach library for cleaning HTML blacklists is related to an error in adding the same word to a blacklist. Exploiting this vulnerability could allow an attacker to compromise data integrity...

Fedora: Security Advisory for python-bleach (FEDORA-2020-e9c8bdd1e3)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for python-bleach (FEDORA-2020-e1fa96c506)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 31 Update: python-bleach-3.1.4-2.fc31

Bleach is an HTML sanitizing library that escapes or strips markup and attributes based on a white list...

[SECURITY] Fedora 30 Update: python-bleach-3.1.4-2.fc30

Bleach is an HTML sanitizing library that escapes or strips markup and attributes based on a white list...

Fedora: Security Advisory for python-bleach (FEDORA-2020-827b677e15)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 31 : python-bleach (2020-e1fa96c506)

Update to version 3.1.4, an upstream security release. See the upstream changelog for details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

Fedora 30 : python-bleach (2020-827b677e15)

Update to version 3.1.4, an upstream security release. See the upstream changelog for details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

MGASA-2020-0176 Updated python-bleach packages fix security vulnerability

In Mozilla Bleach before 3.12, a mutation XSS in bleach.clean when RCDATA and either svg or math tags are whitelisted and the keyword argument strip=False. CVE-2020-6816 Regular expression denial of service. CVE-2020-6817...

Debian: Security Advisory (DLA-2167-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-2167-1 : python-bleach security update

A vulnerability was discovered in python-bleach, a whitelist-based HTML-sanitizing library. Calls to bleach.clean with an allowed tag with an allowed style attribute are vulnerable to a regular expression denial of service ReDoS. For Debian 8 'Jessie', this problem has been fixed in version...

[SECURITY] [DLA 2167-1] python-bleach security update

Package : python-bleach Version : 1.4-1+deb8u1 CVE ID : CVE-2020-6817 Debian Bug : 955388 A vulnerability was discovered in python-bleach, a whitelist-based HTML-sanitizing library. Calls to bleach.clean with an allowed tag with an allowed style attribute are vulnerable to a regular expression...

Debian DSA-4643-1 : python-bleach - security update

It was reported that python-bleach, a whitelist-based HTML-sanitizing library, is prone to a mutation XSS vulnerability in bleach.clean when strip=False and 'math' or 'svg' tags and one or more of the RCDATA tags were whitelisted. C Tenable Network Security, Inc. The descriptive text and package...