First published: Tue Dec 15 2020(Updated: )
python-XStatic-jQuery is the jQuery javascript library packaged for Python's setuptools<br>Security Fix(es):<br><li> Passing HTML containing <option> elements to manipulation methods could</li> result in untrusted code execution (CVE-2020-11023)<br>For more details about the security issue(s), including the impact, a CVSS<br>score, acknowledgments, and other related information, refer to the CVE<br>page listed in the References section.
Affected Software | Affected Version | How to fix |
---|
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of RHSA-2020:5412 is high due to the potential for untrusted code execution.
To fix RHSA-2020:5412, upgrade to the updated version of python-XStatic-jQuery that addresses CVE-2020-11023.
RHSA-2020:5412 addresses the vulnerability CVE-2020-11023 related to untrusted code execution from HTML manipulation.
If your system uses python-XStatic-jQuery, it may be affected by RHSA-2020:5412.
CVE-2020-11023 is a vulnerability that involves executing untrusted code when manipulating HTML containing <option> elements.