RLSA-2021:4158 --- python-lxmlID: oval:org.secpod.oval:def:4501332 | Date: (C)2023-04-03 (M)2023-12-20 |
Class: PATCH | Family: unix |
lxml is an XML processing library providing access to libxml2 and libxslt libraries using the Python ElementTree API. Security Fix: * python-lxml: Missing input sanitization for formaction HTML5 attributes may lead to XSS For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.5 Release Notes linked from the References section.