USN-4666-1 partially fixed a vulnerability in lxml, but an additional patch was needed. This update provides the corresponding additional patch in order to properly fix the vulnerability.
Original advisory details:
It was discovered that lxml incorrectly handled certain HTML. An attacker could possibly use this issue to cross-site scripting (XSS) attacks.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "python3-lxml-dbg": "3.3.3-1ubuntu0.2+esm2", "python-lxml": "3.3.3-1ubuntu0.2+esm2", "python-lxml-dbg": "3.3.3-1ubuntu0.2+esm2", "python-lxml-dbgsym": "3.3.3-1ubuntu0.2+esm2", "python-lxml-doc": "3.3.3-1ubuntu0.2+esm2", "python3-lxml": "3.3.3-1ubuntu0.2+esm2", "python3-lxml-dbgsym": "3.3.3-1ubuntu0.2+esm2" } ] }