[USN-4896-1] lxml vulnerability
Severity
Medium
Affected Packages
11
CVEs
1
lxml could allow cross-site scripting (XSS) attacks.
It was discovered that lxml incorrectly handled certain HTML attributes. A
remote attacker could possibly use this issue to perform cross-site
scripting (XSS) attacks.
Package | Affected Version |
---|---|
pkg:deb/ubuntu/python3-lxml?distro=xenial | < 3.5.0-1ubuntu0.4 |
pkg:deb/ubuntu/python3-lxml?distro=groovy | < 4.5.2-1ubuntu0.4 |
pkg:deb/ubuntu/python3-lxml?distro=focal | < 4.5.0-1ubuntu0.3 |
pkg:deb/ubuntu/python3-lxml?distro=bionic | < 4.2.1-1ubuntu0.4 |
pkg:deb/ubuntu/python-lxml?distro=xenial | < 3.5.0-1ubuntu0.4 |
pkg:deb/ubuntu/python-lxml?distro=focal | < 4.5.0-1ubuntu0.3 |
pkg:deb/ubuntu/python-lxml?distro=bionic | < 4.2.1-1ubuntu0.4 |
pkg:deb/ubuntu/python-lxml-doc?distro=xenial | < 3.5.0-1ubuntu0.4 |
pkg:deb/ubuntu/python-lxml-doc?distro=groovy | < 4.5.2-1ubuntu0.4 |
pkg:deb/ubuntu/python-lxml-doc?distro=focal | < 4.5.0-1ubuntu0.3 |
pkg:deb/ubuntu/python-lxml-doc?distro=bionic | < 4.2.1-1ubuntu0.4 |
- ID
- USN-4896-1
- Severity
- medium
- URL
- https://ubuntu.com/security/notices/USN-4896-1
- Published
-
2021-03-30T16:24:59
(3 years ago) - Modified
-
2021-03-30T16:24:59
(3 years ago) - Other Advisories
-
- ALAS2-2024-2620
- ALPINE:CVE-2021-28957
- ALSA-2021:4151
- ALSA-2021:4158
- ALSA-2021:4160
- ALSA-2021:4162
- DSA-4880-1
- ELSA-2021-4151
- ELSA-2021-4160
- ELSA-2021-4162
- ELSA-2022-9341
- FEDORA-2021-28723f9670
- FEDORA-2021-4cdb0f68c7
- GLSA-202208-06
- MS:CVE-2021-28957
- openSUSE-SU-2022:0803-1
- PYSEC-2021-19
- RHSA-2021:4151
- RHSA-2021:4158
- RHSA-2021:4160
- RHSA-2021:4162
- RLSA-2021:4151
- RLSA-2021:4160
- RLSA-2021:4162
- SUSE-SU-2022:0803-1
- SUSE-SU-2022:0895-1
- SUSE-SU-2022:1536-1
- SUSE-SU-2022:1729-1
- SUSE-SU-2022:3836-1
- SUSE-SU-2022:3934-1
- SUSE-SU-2022:3937-1
- USN-4896-2
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:deb/ubuntu/python3-lxml?distro=xenial | ubuntu | python3-lxml | < 3.5.0-1ubuntu0.4 | xenial | ||
Affected | pkg:deb/ubuntu/python3-lxml?distro=groovy | ubuntu | python3-lxml | < 4.5.2-1ubuntu0.4 | groovy | ||
Affected | pkg:deb/ubuntu/python3-lxml?distro=focal | ubuntu | python3-lxml | < 4.5.0-1ubuntu0.3 | focal | ||
Affected | pkg:deb/ubuntu/python3-lxml?distro=bionic | ubuntu | python3-lxml | < 4.2.1-1ubuntu0.4 | bionic | ||
Affected | pkg:deb/ubuntu/python-lxml?distro=xenial | ubuntu | python-lxml | < 3.5.0-1ubuntu0.4 | xenial | ||
Affected | pkg:deb/ubuntu/python-lxml?distro=focal | ubuntu | python-lxml | < 4.5.0-1ubuntu0.3 | focal | ||
Affected | pkg:deb/ubuntu/python-lxml?distro=bionic | ubuntu | python-lxml | < 4.2.1-1ubuntu0.4 | bionic | ||
Affected | pkg:deb/ubuntu/python-lxml-doc?distro=xenial | ubuntu | python-lxml-doc | < 3.5.0-1ubuntu0.4 | xenial | ||
Affected | pkg:deb/ubuntu/python-lxml-doc?distro=groovy | ubuntu | python-lxml-doc | < 4.5.2-1ubuntu0.4 | groovy | ||
Affected | pkg:deb/ubuntu/python-lxml-doc?distro=focal | ubuntu | python-lxml-doc | < 4.5.0-1ubuntu0.3 | focal | ||
Affected | pkg:deb/ubuntu/python-lxml-doc?distro=bionic | ubuntu | python-lxml-doc | < 4.2.1-1ubuntu0.4 | bionic |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |