https://bugzilla.suse.com/show_bug.cgi?id=1231408 SMASH SMASH <smash_bz@suse.de> changed: What |Removed |Added ---------------------------------------------------------------------------- Priority|P5 - None |P3 - Medium -- You are receiving this mail because: You are on the CC list for the bug.

https://bugzilla.suse.com/show_bug.cgi?id=1231408 https://bugzilla.suse.com/show_bug.cgi?id=1231408#c3 Markéta Machová <mmachova@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mmachova@suse.com --- Comment #3 from Markéta Machová <mmachova@suse.com> --- Just to be clear: is it an issue in the `getColor` function in `xhtml2pdf/util.py`? -- You are receiving this mail because: You are on the CC list for the bug.

https://bugzilla.suse.com/show_bug.cgi?id=1231408 Camila Camargo de Matos <camila.matos@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Summary|VUL-0: CVE-2024-25885: |VUL-0: CVE-2024-25885: |python-xhtml2pdf: regular |python-xhtml2pdf: regular |expression denial of |expression denial of |service through the |service through the |getcolor function in |getColor() function in |utils.py |utils.py -- You are receiving this mail because: You are on the CC list for the bug.

https://bugzilla.suse.com/show_bug.cgi?id=1231408 https://bugzilla.suse.com/show_bug.cgi?id=1231408#c6 Markéta Machová <mmachova@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Assignee|mmachova@suse.com |security-team@suse.de Status|NEW |IN_PROGRESS --- Comment #6 from Markéta Machová <mmachova@suse.com> --- I finally got to this bug, found out there is already a patch upstream and sent SRs. Will be fixed soon in all affected codestreams. -- You are receiving this mail because: You are on the CC list for the bug.