Debian LTS: Security Advisory for lxml (DLA-2467-1)

Published: 2020-11-27 04:00:09
CVE Author: NIST National Vulnerability Database

CVSS Base Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Summary:
The remote host is missing an update for the 'lxml' Linux Distribution Package(s) announced via the DLA-2467-1 advisory.

Detection Method:
Checks if a vulnerable Linux Distribution Package version is present on the target host.

Technical Details:
CVE-2018-19787 It was discovered that there was a XSS injection vulnerability in the LXML HTML/XSS manipulation library for Python. CVE-2020-27783 javascript escaping through the