Fedora 29: 2019-095c760511 Moderate: python-markdown2 XSS Fix

Markdown is a text-to-HTML filter; it translates an easy-to-read /

easy-to-write structured text format into HTML. Markdown's text format

is most similar to that of plain text email, and supports features

such as headers, emphasis, code blocks, blockquotes, and links.

This is a fast and complete Python implementation of the Markdown

spec.

For information about markdown itself, see

http://daringfireball.net/projects/markdown/

## python-markdown2 2.3.7 - [pull #306] Drop support for legacy Python versions

- [pull #307] Fix syntax highlighting test cases that depend on Pygments output

- [pull #308] Add support for Python 3.7 - [pull #304] Add Wheel package support

- [pull #312] Fix toc_depth initialization regression - [pull #315] XSS fix

* Sat Feb 9 2019 Thomas Moschny - 2.3.7-1

- Update to 2.3.7.

- Simplify spec file.

* Sat Feb 2 2019 Fedora Release Engineering - 2.3.6-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild

[ 1 ] Bug #1536921 - CVE-2018-5773 python-markdown2: Unsanitized input in markdown() method allows for cross-site scripting (XSS)

https://bugzilla.redhat.com/show_bug.cgi?id=1536921

su -c 'dnf upgrade --advisory FEDORA-2019-095c760511' at the command

line. For more information, refer to the dnf documentation available at

http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org