Fedora 29: python-markdown2 Security Update
Summary
Markdown is a text-to-HTML filter; it translates an easy-to-read /
easy-to-write structured text format into HTML. Markdown's text format
is most similar to that of plain text email, and supports features
such as headers, emphasis, code blocks, blockquotes, and links.
This is a fast and complete Python implementation of the Markdown
spec.
For information about markdown itself, see
http://daringfireball.net/projects/markdown/
## python-markdown2 2.3.7 - [pull #306] Drop support for legacy Python versions
- [pull #307] Fix syntax highlighting test cases that depend on Pygments output
- [pull #308] Add support for Python 3.7 - [pull #304] Add Wheel package support
- [pull #312] Fix toc_depth initialization regression - [pull #315] XSS fix
* Sat Feb 9 2019 Thomas Moschny
- Update to 2.3.7.
- Simplify spec file.
* Sat Feb 2 2019 Fedora Release Engineering
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
[ 1 ] Bug #1536921 - CVE-2018-5773 python-markdown2: Unsanitized input in markdown() method allows for cross-site scripting (XSS)
https://bugzilla.redhat.com/show_bug.cgi?id=1536921
su -c 'dnf upgrade --advisory FEDORA-2019-095c760511' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
FEDORA-2019-095c760511 2019-02-18 02:03:22.662073 Product : Fedora 29 Version : 2.3.7 Release : 1.fc29 URL : https://github.com/trentm/python-markdown2/ Summary : A fast and complete Python implementation of Markdown Description : Markdown is a text-to-HTML filter; it translates an easy-to-read / easy-to-write structured text format into HTML. Markdown's text format is most similar to that of plain text email, and supports features such as headers, emphasis, code blocks, blockquotes, and links. This is a fast and complete Python implementation of the Markdown spec. For information about markdown itself, see http://daringfireball.net/projects/markdown/ ## python-markdown2 2.3.7 - [pull #306] Drop support for legacy Python versions - [pull #307] Fix syntax highlighting test cases that depend on Pygments output - [pull #308] Add support for Python 3.7 - [pull #304] Add Wheel package support - [pull #312] Fix toc_depth initialization regression - [pull #315] XSS fix * Sat Feb 9 2019 Thomas Moschny - 2.3.7-1 - Update to 2.3.7. - Simplify spec file. * Sat Feb 2 2019 Fedora Release Engineering - 2.3.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild [ 1 ] Bug #1536921 - CVE-2018-5773 python-markdown2: Unsanitized input in markdown() method allows for cross-site scripting (XSS) https://bugzilla.redhat.com/show_bug.cgi?id=1536921 su -c 'dnf upgrade --advisory FEDORA-2019-095c760511' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Change Log
References