| Release | Version |
|---|---|
| jessie | 3.4.0-1+deb8u5 |
| stretch | 3.7.1-1+deb9u5 |
| buster | 4.3.2-1+deb10u4 |
| bullseye | 4.6.3+dfsg-0.1+deb11u1 |
| bookworm | 4.9.2-1 |
| trixie | 5.3.0-1 |
| sid | 5.3.0-1 |
| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-2309 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | NULL Pointer Dereference allows attackers to cause a denial of service ... |
| Bug | Description |
|---|---|
| CVE-2021-43818 | lxml is a library for processing XML and HTML in the Python language. ... |
| CVE-2021-28957 | An XSS vulnerability was discovered in python-lxml's clean module vers ... |
| CVE-2020-27783 | A XSS vulnerability was discovered in python-lxml's clean module. The ... |
| CVE-2018-19787 | An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in th ... |
| CVE-2014-3146 | Incomplete blacklist vulnerability in the lxml.html.clean module in lx ... |
| DSA / DLA | Description |
|---|---|
| DSA-5043-1 | lxml - security update |
| ELA-536-1 | lxml - security update |
| DLA-2871-1 | lxml - security update |
| DSA-4880-1 | lxml - security update |
| DLA-2606-1 | lxml - security update |
| ELA-390-1 | lxml - security update |
| DSA-4810-2 | lxml - regression update |
| DLA-2467-2 | lxml - regression update |
| ELA-332-1 | lxml - security update |
| DSA-4810-1 | lxml - security update |
| ELA-323-1 | lxml - security update |
| DLA-2467-1 | lxml - security update |
| DLA-1604-1 | lxml - security update |
| DLA-0009-1 | lxml - security update |
| DSA-2941-1 | lxml - security update |