AVG-2629 log
| Package | python-lxml |
| Status | Fixed |
| Severity | Medium |
| Type | cross-site scripting |
| Affected | 4.6.4-3 |
| Fixed | 4.6.5-1 |
| Current | 6.0.2-1 [extra] |
| Ticket | None |
| Created | Mon Dec 13 19:17:38 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-43818 | Medium | Yes | Cross-site scripting | There's a flaw in python-lxml's HTML Cleaner component, which is responsible for sanitizing HTML and Javascript. An attacker who is able to submit a crafted... |