[USN-4896-1] lxml vulnerability
Severity
Medium
Affected Packages
11
CVEs
1
lxml could allow cross-site scripting (XSS) attacks.
It was discovered that lxml incorrectly handled certain HTML attributes. A
remote attacker could possibly use this issue to perform cross-site
scripting (XSS) attacks.
| Package | Affected Version |
|---|---|
 pkg:deb/ubuntu/python3-lxml?distro=xenial
|
< 3.5.0-1ubuntu0.4 |
|
pkg:deb/ubuntu/python3-lxml?distro=groovy
|
< 4.5.2-1ubuntu0.4 |
|
pkg:deb/ubuntu/python3-lxml?distro=focal
|
< 4.5.0-1ubuntu0.3 |
|
pkg:deb/ubuntu/python3-lxml?distro=bionic
|
< 4.2.1-1ubuntu0.4 |
|
pkg:deb/ubuntu/python-lxml?distro=xenial
|
< 3.5.0-1ubuntu0.4 |
|
pkg:deb/ubuntu/python-lxml?distro=focal
|
< 4.5.0-1ubuntu0.3 |
|
pkg:deb/ubuntu/python-lxml?distro=bionic
|
< 4.2.1-1ubuntu0.4 |
|
pkg:deb/ubuntu/python-lxml-doc?distro=xenial
|
< 3.5.0-1ubuntu0.4 |
|
pkg:deb/ubuntu/python-lxml-doc?distro=groovy
|
< 4.5.2-1ubuntu0.4 |
|
pkg:deb/ubuntu/python-lxml-doc?distro=focal
|
< 4.5.0-1ubuntu0.3 |
|
pkg:deb/ubuntu/python-lxml-doc?distro=bionic
|
< 4.2.1-1ubuntu0.4 |
- ID
- USN-4896-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-4896-1
- Published
-
2021-03-30T16:24:59
(3 years ago) - Modified
-
2021-03-30T16:24:59
(3 years ago) - Other Advisories
-
-
ALAS2-2024-2620
-
ALPINE:CVE-2021-28957
-
ALSA-2021:4151
-
ALSA-2021:4158
-
ALSA-2021:4160
-
ALSA-2021:4162
-
DSA-4880-1
-
ELSA-2021-4151
-
ELSA-2021-4160
-
ELSA-2021-4162
-
ELSA-2022-9341
-
FEDORA-2021-28723f9670
-
FEDORA-2021-4cdb0f68c7
-
GLSA-202208-06
-
MS:CVE-2021-28957
-
openSUSE-SU-2022:0803-1
-
PYSEC-2021-19
-
RHSA-2021:4151
-
RHSA-2021:4158
-
RHSA-2021:4160
-
RHSA-2021:4162
-
RLSA-2021:4151
-
RLSA-2021:4160
-
RLSA-2021:4162
-
SUSE-SU-2022:0803-1
-
SUSE-SU-2022:0895-1
-
SUSE-SU-2022:1536-1
-
SUSE-SU-2022:1729-1
-
SUSE-SU-2022:3836-1
-
SUSE-SU-2022:3934-1
-
SUSE-SU-2022:3937-1
-
USN-4896-2
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:deb/ubuntu/python3-lxml?distro=xenial | ubuntu |
python3-lxml
|
< 3.5.0-1ubuntu0.4 | xenial | ||
| Affected | pkg:deb/ubuntu/python3-lxml?distro=groovy | ubuntu |
python3-lxml
|
< 4.5.2-1ubuntu0.4 | groovy | ||
| Affected | pkg:deb/ubuntu/python3-lxml?distro=focal | ubuntu |
python3-lxml
|
< 4.5.0-1ubuntu0.3 | focal | ||
| Affected | pkg:deb/ubuntu/python3-lxml?distro=bionic | ubuntu |
python3-lxml
|
< 4.2.1-1ubuntu0.4 | bionic | ||
| Affected | pkg:deb/ubuntu/python-lxml?distro=xenial | ubuntu |
python-lxml
|
< 3.5.0-1ubuntu0.4 | xenial | ||
| Affected | pkg:deb/ubuntu/python-lxml?distro=focal | ubuntu |
python-lxml
|
< 4.5.0-1ubuntu0.3 | focal | ||
| Affected | pkg:deb/ubuntu/python-lxml?distro=bionic | ubuntu |
python-lxml
|
< 4.2.1-1ubuntu0.4 | bionic | ||
| Affected | pkg:deb/ubuntu/python-lxml-doc?distro=xenial | ubuntu |
python-lxml-doc
|
< 3.5.0-1ubuntu0.4 | xenial | ||
| Affected | pkg:deb/ubuntu/python-lxml-doc?distro=groovy | ubuntu |
python-lxml-doc
|
< 4.5.2-1ubuntu0.4 | groovy | ||
| Affected | pkg:deb/ubuntu/python-lxml-doc?distro=focal | ubuntu |
python-lxml-doc
|
< 4.5.0-1ubuntu0.3 | focal | ||
| Affected | pkg:deb/ubuntu/python-lxml-doc?distro=bionic | ubuntu |
python-lxml-doc
|
< 4.2.1-1ubuntu0.4 | bionic |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |