402 matches found
SUSE-SU-2026:2728-1 Security update for python-lxml
This update for python-lxml fixes the following issue - CVE-2026-41066: information disclosure via untrusted XML input leading to local file read bsc1263254...
OPENSUSE-SU-2026:11147-1 python-lxml-doc-6.1.1-1.1 on GA media
These are all security issues fixed in the python-lxml-doc-6.1.1-1.1 package on the GA media of openSUSE Tumbleweed...
PT-2026-53938
Name of the Vulnerable Software and Affected Versions python313-lxml html clean versions prior to 0.4.5-1.1 python-lxml-doc versions prior to 6.1.1-1.1 Description Security issues were identified in the python313-lxml html clean and python-lxml-doc packages. Recommendations Update python313-lxml...
SUSE-SU-2026:2488-1 Security update for python-lxml
This update for python-lxml fixes the following issue - CVE-2026-41066: information disclosure via untrusted XML input leading to local file read bsc1263254...
Critical Photon OS Security Update - PHSA-2026-5.0-0882
Updates of 'python3-mako', 'python3-mistune', 'python3-lxml', 'ruby', 'linux', 'python3-ujson', 'linux-esx', 'python3' packages of Photon OS have been released...
Astra Linux – Vulnerability in lxml
A XSS vulnerability was discovered in the clean module of python-lxml’s versions prior to 4.6.3. When the “safe attrsOnly” and “forms” arguments are disabled, the Cleaner class does not remove the “formaction” attribute, allowing JavaScript to bypass the sanitizer. A remote attacker could exploit...
Security update for python-lxml (moderate)
openSUSE security update: security update for python-lxml ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20737-1 Rating: moderate References: bsc1263254 Cross-References: CVE-2026-41066 CVSS scores: CVE-2026-41066 SUSE : 5.9...
SUSE-SU-2026:21731-1 Security update for python-lxml
This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local file read bsc1263254...
SUSE SLES16 Security Update : python-lxml (SUSE-SU-2026:21603-1)
The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:21603-1 advisory. This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local fil...
Amazon Linux 2 : python-lxml, --advisory ALAS2-2026-3297 (ALAS-2026-3297)
The version of python-lxml installed on the remote host is prior to 3.2.1-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3297 advisory. lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the...
Important: python-lxml
Issue Overview: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...
OPENSUSE-SU-2026:20737-1 Security update for python-lxml
This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local file read bsc1263254...
SUSE-SU-2026:21603-1 Security update for python-lxml
This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local file read bsc1263254...
SUSE-SU-2026:21587-1 Security update for python-lxml
This update for python-lxml fixes the following issue - CVE-2026-41066: Information disclosure via untrusted XML input leading to local file read bsc1263254...
CVE-2026-41066 affecting package python-lxml for versions less than 4.9.3-2
CVE-2026-41066 affecting package python-lxml for versions less than 4.9.3-2. A patched version of the package is available...
OESA-2026-2012 python-lxml security update
\ Security Fixes: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...
OESA-2026-2011 python-lxml security update
\ Security Fixes: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...
OESA-2026-2009 python-lxml security update
\ Security Fixes: lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration with resolveentities=True allows untrusted XML input to read local files. Setting the resolveentities option explicitly to...
OPENSUSE-SU-2026:10596-1 python-lxml-doc-6.1.0-1.1 on GA media
These are all security issues fixed in the python-lxml-doc-6.1.0-1.1 package on the GA media of openSUSE Tumbleweed...
openSUSE 16 Security Update : python-lxml_html_clean (openSUSE-SU-2026:20345-1)
The remote openSUSE 16 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20345-1 advisory. Changes in python-lxmlhtmlclean: - CVE-2026-28348: improper keywords checking can allow external CSS loading bsc1259378 - CVE-2026-28350: lack o...