[Git][security-tracker-team/security-tracker][master] Add fixed version for CVE-2021-23980/python-bleach via unstable
Salvatore Bonaccorso
carnil at debian.org
Fri Apr 9 19:37:37 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b15acb03 by Salvatore Bonaccorso at 2021-04-09T20:36:58+02:00
Add fixed version for CVE-2021-23980/python-bleach via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14949,7 +14949,7 @@ CVE-2021-23981 (A texture upload of a Pixel Buffer Object could have confused th
CVE-2021-23980 [mutation XSS via allowed math or svg; p or br; and style, title, noscript, script, textarea, noframes, iframe, or xmp tags with strip_comments=False]
RESERVED
{DLA-2620-1}
- - python-bleach <unfixed> (bug #986251)
+ - python-bleach 3.2.1-2.1 (bug #986251)
NOTE: https://github.com/mozilla/bleach/security/advisories/GHSA-vv2x-vrpj-qqpq
NOTE: https://bugzilla.mozilla.org/show_bug.cgi?id=1689399
NOTE: https://github.com/mozilla/bleach/commit/1334134d34397966a7f7cfebd38639e9ba2c680e
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b15acb036890b0ed9978b0f45156f1e7f400bc1d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b15acb036890b0ed9978b0f45156f1e7f400bc1d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210409/f3f002f2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list