Source: tidy-html5 X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security
Hi, The following vulnerability was published for tidy-html5. CVE-2021-33391[0]: | An issue in HTACG HTML Tidy v5.7.28 allows attacker to execute | arbitrary code via the -g option of the CleanNode() function in | gdoc.c. https://github.com/htacg/tidy-html5/issues/946 https://github.com/htacg/tidy-html5/commit/efa61528aa500a1efbd2768121820742d3bb709b If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2021-33391 https://www.cve.org/CVERecord?id=CVE-2021-33391 Please adjust the affected versions in the BTS as needed.
