Article Source Fedora 10 Security Updates
October 8, 2009, 7:22 pm
October 8, 2009, 7:22 pm
Update from 1.0.1.11 to 1.0.1.15, which fixes some issues, including these two security-related bugs:
– [Issue 30] Fix a possible XSS via JavaScript injection in a carefully crafted image reference (usage of double-quotes in the URL).
– [Issue 29] Fix security hole in the md5-hashing scheme for handling HTML chunks during processing. See http://code.google.com/p/python-markdown2/source/browse/trunk/CHANGES.txt for the full changelog…