Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 543
Alerts This Week
Warning Icon 1 543

Debian 8: DLA-1604-1 Moderate: LXML XSS Injection Patch

debian lts
Calendar Grey December 10, 2018
Dist Debian Esm H88
Update lxml to fix a significant cross-site scripting vulnerability in Debian 8 Jessie. Safeguard your infrastructure without delay!
It was discovered that there was a XSS injection vulnerability in the LXML HTML/XSS manipulation library for Python

Summary

For Debian 8 "Jessie", this issue has been fixed in lxml version
3.4.0-1+deb8u1.

We recommend that you upgrade your lxml packages.


Regards,

- --
,'`.
: :' : Chris Lamb
`. `'` lamby@debian.org / chris-lamb.co.uk
`-



Package: lxml
Version: 3.4.0-1+deb8u1
CVE ID: CVE-2018-19787

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.