|漏洞详情
Lxml是Lxml个人开发者的一个可与Python交互用于定位Html中元素的软件。 Lxml 存在跨站脚本漏洞,该漏洞源于javascript通过noscript和style组合进行转义。以下产品及版本会受到影响:Debian stretch, Debian stretch (security), Debian buster, Debian bullseye, sid; Red Hat Software Collections, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 8, Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, Red Hat Enterprise Linux 7,Red Hat Enterprise Linux 8 , Red Hat OpenStack Platform 10 (Newton), Red Hat OpenStack Platform 13 (Queens)
|参考资料
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4203/