Subject: CVE Request: html5lib: potential cross-site scripting vulnerability: quote attributes that need escaping in legacy browsers Email Date: 6 Dec 2016 13:56:28 +0100 Sender: Salvatore Bonaccorso Link to Source Clear Registry Issue: https://www.sourceclear.com/registry/security/cross-site-scripting-xss-/python/sid-3068/fix GitHub Commit Fix: html5lib fixed a cross-site scripting vulnerability in upstream version 0.99999999 with commit 9b8d8eb5afbc066b7fac9390f5ec75e5e8a7cab7 References: - Issue 11 - Issue 12 CVE Assignment Request: Mentioned in Mozilla bleach issues 229 Request: Assign a CVE to identify this issue