projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2af6d8a) | patch
package/python-lxml: security bump to version 4.6.2
authorPeter Korsgaard <peter@korsgaard.com>
Sun, 13 Dec 2020 23:01:52 +0000 (00:01 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Mon, 14 Dec 2020 14:44:31 +0000 (15:44 +0100)
commitea41a5faab3fda4589956b24d4731292872934a5
tree7d4c9637a6a576f2b0b592dc2648630580658630tree
parent2af6d8a875809c512578a59c3cd52d5e51c0c51acommit | diff
package/python-lxml: security bump to version 4.6.2

Fixes the following security issues:

* 4.6.2: A vulnerability (CVE-2020-27783) was discovered in the HTML Cleaner
  by Yaniv Nizry, which allowed JavaScript to pass through.  The cleaner now
  removes more sneaky "style" content.

* 4.6.1: A vulnerability was discovered in the HTML Cleaner by Yaniv Nizry,
  which allowed JavaScript to pass through.  The cleaner now removes more
  sneaky "style" content.

For more details, see the changes file:
https://github.com/lxml/lxml/blob/lxml-4.6.2/CHANGES.txt

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/python-lxml/python-lxml.hash diff | blob | history
package/python-lxml/python-lxml.mk diff | blob | history