openSUSE Tumbleweed — python36-mistune — multiple vulnerabilities (2 CVEs) — patch and remediation guide
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: openSUSE Tumbleweed 📖 ~4 min read • Source: SUSE security advisory (see also SUSE bugzilla) Related CVEs: CVE-2017-15612 CVE-2017-16876 Upstream summary: mistune.py in Mistune 0.7.4 allows XSS via an unexpected newline (such as in javanscript:) or a crafted email address, related to […]