[USN-3841-2] lxml vulnerability

Severity Medium

CVEs 1

lxml could allow cross-site scripting (XSS) attacks.

USN-3841-1 fixed a vulnerability in lxml. This update provides
the corresponding update for Ubuntu 12.04 ESM.

Original advisory details:

It was discovered that lxml incorrectly handled certain HTML files.
An attacker could possibly use this issue to conduct cross-site scripting
(XSS) attacks.

ID

USN-3841-2

Severity

medium

Severity from

CVE-2018-19787

URL

https://ubuntu.com/security/notices/USN-3841-2

Published

2018-12-10T13:47:34
(5 years ago)

Modified

2018-12-10T13:47:34
(5 years ago)

Other Advisories

FEDORA-2018-4be0428ab2
FEDORA-2018-67e98d4b7a
MS:CVE-2018-19787
openSUSE-SU-2022:0803-1
PYSEC-2018-12
SUSE-SU-2022:0803-1
SUSE-SU-2022:0895-1
SUSE-SU-2022:1536-1
SUSE-SU-2022:1729-1
USN-3841-1

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date