lxml (3.5.0-1ubuntu0.4) xenial-security; urgency=medium
* SECURITY UPDATE: incorrect formaction attribute input sanitization
- Add HTML-5 formaction attribute to defs.link_attrs in
src/lxml/html/defs.py, src/lxml/html/tests/test_clean.py.
- CVE-2021-28957
Date: 2021-03-29 16:42:09.144711+00:00
Changed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-ro...@lists.canonical.com>
https://launchpad.net/ubuntu/+source/lxml/3.5.0-1ubuntu0.4
Sorry, changesfile not available.
--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
