Vulnerability Bulletins |
DSA-4636 python-bleach - security update |
|
System information |
|
| Affected software | Debian |
Description |
|
|
It was reported that python-bleach, a whitelist-based HTML-sanitizinglibrary, is prone to a mutation XSS vulnerability in bleach.clean whennoscript and one or more raw text tags were whitelisted. More info: https://www.debian.org/security/2020/dsa-4636 |
|
Standar resources |
|
| Property | Value |
| CVE | CVE-2020-6802 and DSA-4636. |
Version history |
||
| Version | Comments | Date |
| 1.0 | Advisory issued | 2020-03-01 |