Fedora 10 Security Update: python-markdown2-1.0.1.15-1.fc10

30
Article Source Fedora 10 Security Updates
October 8, 2009, 7:22 pm

Update from 1.0.1.11 to 1.0.1.15, which fixes some issues, including these two security-related bugs:

– [Issue 30] Fix a possible XSS via JavaScript injection in a carefully crafted image reference (usage of double-quotes in the URL).

– [Issue 29] Fix security hole in the md5-hashing scheme for handling HTML chunks during processing. See http://code.google.com/p/python-markdown2/source/browse/trunk/CHANGES.txt for the full changelog…

Read More