godotengine/buildroot
1
0
Fork 0
mirror of https://github.com/godotengine/buildroot.git synced 2026-01-01 13:49:03 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
2020.02.10
buildroot/package/python-markdown2
History
Fabrice Fontaine 60685507c7 package/python-markdown2: fix CVE-2020-11888 
python-markdown2 through 2.3.8 allows XSS because element names are
mishandled unless a \w+ match succeeds. For example, an attack might use
elementname@ or elementname- with an onclick attribute.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 544007dcc4)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2020-05-12 12:58:02 +02:00
..
0001-Fix-for-issue-348-incomplete-tags-with-punctuation-after-as-part-of.patch
0002-Better-fix-for-issue-348.patch
Config.in
python-markdown2.hash
python-markdown2.mk