Fedora Linux 8524 Published by

A python-docx security update has been released for Fedora 33.



SECURITY: Fedora 33 Update: python-docx-0.8.11-3.fc33


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-aa54748cd9
2021-08-19 01:10:36.707685
--------------------------------------------------------------------------------

Name : python-docx
Product : Fedora 33
Version : 0.8.11
Release : 3.fc33
URL :   https://python-docx.readthedocs.io/en/latest/
Summary : Create and modify Word documents with Python
Description :
A Python library for creating and updating Microsoft Word (.docx) files.

--------------------------------------------------------------------------------
Update Information:

Security fix for
[CVE-2016-5851](  https://nvd.nist.gov/vuln/detail/CVE-2016-5851). Updates to
0.8.11.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Aug 10 2021 Benjamin A. Beasley 0.8.11-3
- Use the PyPI tarball to avoid redistributing ISO standard PDFs
* Fri Aug 6 2021 Benjamin A. Beasley 0.8.11-2
- Clean up some leftover historical debris in the spec file
* Fri Aug 6 2021 Benjamin A. Beasley 0.8.11-1
- Update to 0.8.11. (Fix CVE-2016-5851, fix RHBZ#1351082, fix RHBZ#1351083,
fix RHBZ#1349211, fix RHBZ#1926209.)
* Tue Jul 27 2021 Fedora Release Engineering - 0.8.5-26
- Second attempt - Rebuilt for
  https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild
* Fri Jun 4 2021 Python Maint - 0.8.5-25
- Rebuilt for Python 3.10
* Wed Jan 27 2021 Fedora Release Engineering - 0.8.5-24
- Rebuilt for   https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1351082 - CVE-2016-5851 python-docx: XML External Entity Attack
  https://bugzilla.redhat.com/show_bug.cgi?id=1351082
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-aa54748cd9' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys