Information on source package python-bleach

Available versions

ReleaseVersion
stretch2.0-1
stretch (security)2.0-1+deb9u1
buster3.1.2-0+deb10u2
bullseye3.2.1-2.1
bookworm3.2.1-2.1
sid3.2.1-2.1

Open issues

BugstretchbusterbullseyebookwormsidDescription
CVE-2020-6817vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedRegular expression denial of service
CVE-2020-6816vulnerable (no DSA, ignored)fixedfixedfixedfixedIn Mozilla Bleach before 3.12, a mutation XSS in bleach.clean when RCD ...
CVE-2020-6802vulnerable (no DSA, ignored)fixedfixedfixedfixedIn Mozilla Bleach before 3.11, a mutation XSS affects users calling bl ...

Resolved issues

BugDescription
CVE-2021-23980mutation XSS via allowed math or svg; p or br; and style, title, noscript, script, textarea, noframes, iframe, or xmp tags with strip_comments=False
CVE-2018-7753An issue was discovered in Bleach 2.1.x before 2.1.3. Attributes that ...

Security announcements

DSA / DLADescription
DSA-4892-1python-bleach - security update
DLA-2620-1python-bleach - security update
DLA-2167-1python-bleach - security update
DSA-4643-1python-bleach - security update
DSA-4636-1python-bleach - security update

Search for package or bug name: Reporting problems