Upstream information

CVE-2026-41066 at MITRE

Description

lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the default configuration (with resolve_entities=True) allows untrusted XML input to read local files. Setting the resolve_entities option explicitly to resolve_entities='internal' or resolve_entities=False disables the local file access. This vulnerability is fixed in 6.1.0.

SUSE information

Overall state of this security issue: Pending

This issue is currently rated as having moderate severity.

CVSS v3 Scores
CVSS detail CNA (GitHub) SUSE
Base Score 7.5 5.9
Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector Network Network
Attack Complexity Low High
Privileges Required None None
User Interaction None None
Scope Unchanged Unchanged
Confidentiality Impact High High
Integrity Impact None None
Availability Impact None None
CVSSv3 Version 3.1 3.1
CVSS v4 Scores
CVSS detail SUSE
Base Score 6
Vector CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
Attack Vector Network
Attack Complexity High
Attack Requirements Present
Privileges Required Low
User Interaction None
Vulnerable System Confidentiality Impact High
Vulnerable System Integrity Impact None
Vulnerable System Availability Impact None
Subsequent System Confidentiality Impact None
Subsequent System Integrity Impact None
Subsequent System Availability Impact None
CVSSv4 Version 4.0
SUSE Bugzilla entry: 1263254 [IN_PROGRESS]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
Image SL-Micro
Image SL-Micro-Azure
Image SL-Micro-BYOS-Azure
Image SL-Micro-BYOS-EC2
Image SL-Micro-BYOS-GCE
Image SL-Micro-Default
Image SL-Micro-Default-SelfInstall
Image SL-Micro-Default-encrypted
Image SL-Micro-Default-qcow
Image SL-Micro-EC2
Image SLE-Micro
Image SLE-Micro-Azure
Image SLE-Micro-BYOS
Image SLE-Micro-BYOS-Azure
Image SLE-Micro-BYOS-EC2
Image SLE-Micro-BYOS-GCE
Image SLE-Micro-EC2
Image SLE-Micro-GCE
Image SUSE-Multi-Linux-Manager-Proxy-BYOS-Azure
Image SUSE-Multi-Linux-Manager-Proxy-BYOS-EC2
Image SUSE-Multi-Linux-Manager-Proxy-BYOS-GCE
Image SUSE-Multi-Linux-Manager-Server-Azure-llc
Image SUSE-Multi-Linux-Manager-Server-Azure-ltd
Image SUSE-Multi-Linux-Manager-Server-BYOS-Azure
Image SUSE-Multi-Linux-Manager-Server-BYOS-EC2
Image SUSE-Multi-Linux-Manager-Server-BYOS-GCE
Image SUSE-Multi-Linux-Manager-Server-EC2-llc
Image SUSE-Multi-Linux-Manager-Server-EC2-ltd
  • python311-lxml >= 4.9.3-slfo.1.1_2.1
Image SLES-Azure-3P
Image SLES-Azure-Basic
Image SLES-Azure-Standard
Image SLES-BYOS-Azure
Image SLES-BYOS-EC2
Image SLES-BYOS-GCE
Image SLES-EC2
Image SLES-EC2-ECS
Image SLES-GCE
Image SLES-GCE-3P
Image SLES-Hardened-BYOS-Azure
Image SLES-Hardened-BYOS-EC2
Image SLES-Hardened-BYOS-GCE
Image SLES-SAP-Azure
Image SLES-SAP-Azure-3P
Image SLES-SAP-BYOS-Azure
Image SLES-SAP-BYOS-EC2
Image SLES-SAP-BYOS-GCE
Image SLES-SAP-EC2
Image SLES-SAP-GCE
Image SLES-SAP-GCE-3P
Image SLES-SAPCAL-Azure
Image SLES-SAPCAL-EC2
Image SLES-SAPCAL-GCE
  • python313-lxml >= 5.4.0-160000.3.1
Image SLES15-SP4-BYOS
Image SLES15-SP4-BYOS-Azure
Image SLES15-SP4-BYOS-EC2
Image SLES15-SP4-BYOS-GCE
Image SLES15-SP4-HPC-BYOS
Image SLES15-SP4-HPC-BYOS-Azure
Image SLES15-SP4-HPC-BYOS-EC2
Image SLES15-SP4-HPC-BYOS-GCE
Image SLES15-SP4-HPC-EC2
Image SLES15-SP4-HPC-GCE
Image SLES15-SP4-Hardened-BYOS
Image SLES15-SP4-Hardened-BYOS-Azure
Image SLES15-SP4-Hardened-BYOS-EC2
Image SLES15-SP4-Hardened-BYOS-GCE
Image SLES15-SP4-SAP
Image SLES15-SP4-SAP-Azure
Image SLES15-SP4-SAP-BYOS
Image SLES15-SP4-SAP-BYOS-Azure
Image SLES15-SP4-SAP-BYOS-EC2
Image SLES15-SP4-SAP-BYOS-GCE
Image SLES15-SP4-SAP-EC2
Image SLES15-SP4-SAP-GCE
Image SLES15-SP4-SAP-Hardened
Image SLES15-SP4-SAP-Hardened-Azure
Image SLES15-SP4-SAP-Hardened-BYOS
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
Image SLES15-SP4-SAP-Hardened-GCE
Image SLES15-SP4-SAPCAL
Image SLES15-SP4-SAPCAL-Azure
Image SLES15-SP4-SAPCAL-EC2
Image SLES15-SP4-SAPCAL-GCE
  • python3-lxml >= 4.7.1-150200.3.15.1
SUSE Linux Enterprise Desktop 15 SP7
SUSE Linux Enterprise High Performance Computing 15 SP7
SUSE Linux Enterprise Server 15 SP7
SUSE Linux Enterprise Server for SAP Applications 15 SP7
  • python3-lxml >= 4.9.1-150500.3.7.1
  • python3-lxml-devel >= 4.9.1-150500.3.7.1
  • python311-lxml >= 4.9.3-150400.8.11.1
Patchnames:
SUSE-SLE-Module-Basesystem-15-SP7-2026-2754
SUSE-SLE-Module-Python3-15-SP7-2026-2729
SUSE Linux Enterprise High Performance Computing 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
  • python3-lxml >= 3.3.5-3.18.1
  • python3-lxml-doc >= 3.3.5-3.18.1
Patchnames:
SUSE-SLE-Module-Public-Cloud-Unrestricted-12-2026-2753
SUSE Linux Enterprise Micro 5.3
  • python3-lxml >= 4.7.1-150200.3.15.1
Patchnames:
SUSE-SLE-Micro-5.3-2026-2488
SUSE Linux Enterprise Micro 5.4
  • python3-lxml >= 4.7.1-150200.3.15.1
Patchnames:
SUSE-SLE-Micro-5.4-2026-2488
SUSE Linux Enterprise Micro 5.5
  • python3-lxml >= 4.9.1-150500.3.7.1
Patchnames:
SUSE-SLE-Micro-5.5-2026-2754
SUSE Linux Enterprise Module for Basesystem 15 SP7
  • python3-lxml >= 4.9.1-150500.3.7.1
  • python3-lxml-devel >= 4.9.1-150500.3.7.1
Patchnames:
SUSE-SLE-Module-Basesystem-15-SP7-2026-2754
SUSE Linux Enterprise Module for Python 3 15 SP7
  • python311-lxml >= 4.9.3-150400.8.11.1
Patchnames:
SUSE-SLE-Module-Python3-15-SP7-2026-2729
SUSE Linux Enterprise Server 16.0
SUSE Linux Enterprise Server for SAP applications 16.0
  • python-lxml-doc >= 5.4.0-160000.3.1
  • python313-lxml >= 5.4.0-160000.3.1
  • python313-lxml-devel >= 5.4.0-160000.3.1
Patchnames:
SUSE-SLES-16.0-728
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
  • python-lxml >= 3.6.1-8.8.1
  • python3-lxml >= 3.6.1-3.9.1
Patchnames:
SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2728
SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2752
SUSE Linux Micro 6.0
  • python311-lxml >= 4.9.3-2.1
Patchnames:
SUSE-SLE-Micro-6.0-700
SUSE Linux Micro 6.1
  • python311-lxml >= 4.9.3-slfo.1.1_2.1
Patchnames:
SUSE-SLE-Micro-6.1-531
SUSE Linux Micro 6.2
  • python313-lxml >= 5.4.0-160000.3.1
Patchnames:
SUSE-SL-Micro-6.2-728
openSUSE Leap 16.0
  • python-lxml-doc >= 5.4.0-160000.3.1
  • python313-lxml >= 5.4.0-160000.3.1
  • python313-lxml-devel >= 5.4.0-160000.3.1
Patchnames:
openSUSE-Leap-16.0-728
openSUSE Tumbleweed
  • python-lxml-doc >= 6.1.0-1.1
  • python311-lxml >= 6.1.0-1.1
  • python311-lxml-devel >= 6.1.0-1.1
  • python313-lxml >= 6.1.0-1.1
  • python313-lxml-devel >= 6.1.0-1.1
  • python314-lxml >= 6.1.0-1.1
  • python314-lxml-devel >= 6.1.0-1.1
Patchnames:
openSUSE-Tumbleweed-2026-10596

List of packages in QA

Product(s) Package(s)
SUSE Linux Enterprise Server 16.0
  • python-lxml-doc >= 5.4.0-160000.3.1
  • python313-lxml >= 5.4.0-160000.3.1
  • python313-lxml-devel >= 5.4.0-160000.3.1


First public cloud image revisions this CVE is fixed in:


Status of this issue by product and package

Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.

Product(s) Source package State
Products under general support and receiving all security fixes.
SUSE Linux Enterprise Desktop 15 SP7 python-lxml Released
SUSE Linux Enterprise Desktop 15 SP7 python3-lxml Released
SUSE Linux Enterprise High Performance Computing 12 python3-lxml Released
SUSE Linux Enterprise High Performance Computing 15 SP7 python-lxml Released
SUSE Linux Enterprise High Performance Computing 15 SP7 python3-lxml Released
SUSE Linux Enterprise Micro 5.3 python-lxml Released
SUSE Linux Enterprise Micro 5.4 python-lxml Released
SUSE Linux Enterprise Micro 5.5 python3-lxml Released
SUSE Linux Enterprise Micro for Rancher 5.3 python-lxml Released
SUSE Linux Enterprise Micro for Rancher 5.4 python-lxml Released
SUSE Linux Enterprise Module for Basesystem 15 SP7 python3-lxml Released
SUSE Linux Enterprise Module for Python 3 15 SP7 python-lxml Released
SUSE Linux Enterprise Server 15 SP7 python-lxml Released
SUSE Linux Enterprise Server 15 SP7 python3-lxml Released
SUSE Linux Enterprise Server 16.0 python-lxml In progress
SUSE Linux Enterprise Server 16.1 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP7 python-lxml Released
SUSE Linux Enterprise Server for SAP Applications 15 SP7 python3-lxml Released
SUSE Linux Enterprise Server for SAP applications 16.0 python-lxml Released
SUSE Linux Enterprise Server for SAP applications 16.1 python-lxml Affected
SUSE Linux Micro 6.0 python-lxml Released
SUSE Linux Micro 6.1 python-lxml Released
SUSE Linux Micro 6.2 python-lxml Released
openSUSE Leap 16.0 python-lxml Affected
Products under Long Term Service Pack support and receiving important and critical security fixes.
SUSE Linux Enterprise High Performance Computing 15 SP4 python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP5 python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP5 python3-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS python3-lxml Affected
SUSE Linux Enterprise Module for Basesystem 15 SP4 python-lxml Affected
SUSE Linux Enterprise Module for Basesystem 15 SP5 python3-lxml Affected
SUSE Linux Enterprise Module for Basesystem 15 SP6 python3-lxml Affected
SUSE Linux Enterprise Module for Public Cloud 12 python3-lxml Released
SUSE Linux Enterprise Module for Python 3 15 SP4 python-lxml Affected
SUSE Linux Enterprise Module for Python 3 15 SP5 python-lxml Affected
SUSE Linux Enterprise Module for Python 3 15 SP6 python-lxml Affected
SUSE Linux Enterprise Server 12 SP5 python-lxml Affected
SUSE Linux Enterprise Server 12 SP5 python3-lxml Released
SUSE Linux Enterprise Server 12 SP5-LTSS python-lxml Affected
SUSE Linux Enterprise Server 12 SP5-LTSS python3-lxml Affected
SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security python-lxml Released
SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security python3-lxml Released
SUSE Linux Enterprise Server 15 SP4 python-lxml Affected
SUSE Linux Enterprise Server 15 SP4-LTSS python-lxml Affected
SUSE Linux Enterprise Server 15 SP5 python-lxml Affected
SUSE Linux Enterprise Server 15 SP5 python3-lxml Affected
SUSE Linux Enterprise Server 15 SP5-LTSS python-lxml Affected
SUSE Linux Enterprise Server 15 SP5-LTSS python3-lxml Affected
SUSE Linux Enterprise Server 15 SP6 python-lxml Affected
SUSE Linux Enterprise Server 15 SP6 python3-lxml Affected
SUSE Linux Enterprise Server 15 SP6-LTSS python-lxml Affected
SUSE Linux Enterprise Server 15 SP6-LTSS python3-lxml Affected
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 python-lxml Released
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 python3-lxml Released
SUSE Linux Enterprise Server for SAP Applications 12 SP5 python3-lxml Released
SUSE Linux Enterprise Server for SAP Applications 15 SP6 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP6 python3-lxml Affected
SUSE Manager Proxy 4.3 python-lxml Affected
SUSE Manager Proxy LTS 4.3 python-lxml Affected
SUSE Manager Retail Branch Server 4.3 python-lxml Affected
SUSE Manager Retail Branch Server LTS 4.3 python-lxml Affected
SUSE Manager Server 4.3 python-lxml Affected
SUSE Manager Server LTS 4.3 python-lxml Affected
Products past their end of life and not receiving proactive updates anymore.
HPE Helion OpenStack 8 python-lxml Affected
HPE Helion OpenStack 8 python3-lxml Affected
SUSE CaaS Platform 4.0 python-lxml Affected
SUSE CaaS Platform Toolchain 3 python-lxml Affected
SUSE Enterprise Storage 6 python-lxml Affected
SUSE Enterprise Storage 7 python-lxml Affected
SUSE Enterprise Storage 7.1 python-lxml Affected
SUSE Linux Enterprise Desktop 12 SP2 python-lxml Affected
SUSE Linux Enterprise Desktop 12 SP2 python3-lxml Affected
SUSE Linux Enterprise Desktop 12 SP3 python-lxml Affected
SUSE Linux Enterprise Desktop 12 SP4 python-lxml Affected
SUSE Linux Enterprise Desktop 15 python-lxml Affected
SUSE Linux Enterprise Desktop 15 SP1 python-lxml Affected
SUSE Linux Enterprise Desktop 15 SP2 python-lxml Affected
SUSE Linux Enterprise Desktop 15 SP3 python-lxml Affected
SUSE Linux Enterprise Desktop 15 SP4 python-lxml Affected
SUSE Linux Enterprise Desktop 15 SP5 python-lxml Affected
SUSE Linux Enterprise Desktop 15 SP5 python3-lxml Affected
SUSE Linux Enterprise Desktop 15 SP6 python-lxml Affected
SUSE Linux Enterprise Desktop 15 SP6 python3-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP1 python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP2 python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP3 python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS python3-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP6 python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15 SP6 python3-lxml Affected
SUSE Linux Enterprise High Performance Computing 15-ESPOS python-lxml Affected
SUSE Linux Enterprise High Performance Computing 15-LTSS python-lxml Affected
SUSE Linux Enterprise Module for Basesystem 15 python-lxml Affected
SUSE Linux Enterprise Module for Basesystem 15 SP1 python-lxml Affected
SUSE Linux Enterprise Module for Basesystem 15 SP2 python-lxml Affected
SUSE Linux Enterprise Module for Basesystem 15 SP3 python-lxml Affected
SUSE Linux Enterprise Module for Python 2 15 SP1 python-lxml Affected
SUSE Linux Enterprise Module for Python 2 15 SP2 python-lxml Affected
SUSE Linux Enterprise Module for Python 2 15 SP3 python-lxml Affected
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT python-lxml Affected
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT python3-lxml Affected
SUSE Linux Enterprise Real Time 15 SP2 python-lxml Affected
SUSE Linux Enterprise Real Time 15 SP3 python-lxml Affected
SUSE Linux Enterprise Real Time 15 SP4 python-lxml Affected
SUSE Linux Enterprise Server 12 python3-lxml Released
SUSE Linux Enterprise Server 12 SP1-LTSS python3-lxml Affected
SUSE Linux Enterprise Server 12 SP2 python-lxml Affected
SUSE Linux Enterprise Server 12 SP2 python3-lxml Affected
SUSE Linux Enterprise Server 12 SP2-BCL python-lxml Affected
SUSE Linux Enterprise Server 12 SP2-BCL python3-lxml Affected
SUSE Linux Enterprise Server 12 SP2-ESPOS python-lxml Affected
SUSE Linux Enterprise Server 12 SP2-ESPOS python3-lxml Affected
SUSE Linux Enterprise Server 12 SP2-LTSS python-lxml Affected
SUSE Linux Enterprise Server 12 SP2-LTSS python3-lxml Affected
SUSE Linux Enterprise Server 12 SP3 python-lxml Affected
SUSE Linux Enterprise Server 12 SP3 python3-lxml Released
SUSE Linux Enterprise Server 12 SP3-BCL python-lxml Affected
SUSE Linux Enterprise Server 12 SP3-BCL python3-lxml Affected
SUSE Linux Enterprise Server 12 SP3-ESPOS python-lxml Affected
SUSE Linux Enterprise Server 12 SP3-ESPOS python3-lxml Affected
SUSE Linux Enterprise Server 12 SP3-LTSS python-lxml Affected
SUSE Linux Enterprise Server 12 SP3-LTSS python3-lxml Released
SUSE Linux Enterprise Server 12 SP4 python-lxml Affected
SUSE Linux Enterprise Server 12 SP4 python3-lxml Released
SUSE Linux Enterprise Server 12 SP4-ESPOS python-lxml Affected
SUSE Linux Enterprise Server 12 SP4-ESPOS python3-lxml Affected
SUSE Linux Enterprise Server 12 SP4-LTSS python-lxml Affected
SUSE Linux Enterprise Server 12 SP4-LTSS python3-lxml Affected
SUSE Linux Enterprise Server 12-LTSS python3-lxml Released
SUSE Linux Enterprise Server 15 python-lxml Affected
SUSE Linux Enterprise Server 15 SP1 python-lxml Affected
SUSE Linux Enterprise Server 15 SP1-BCL python-lxml Affected
SUSE Linux Enterprise Server 15 SP1-LTSS python-lxml Affected
SUSE Linux Enterprise Server 15 SP2 python-lxml Affected
SUSE Linux Enterprise Server 15 SP2-BCL python-lxml Affected
SUSE Linux Enterprise Server 15 SP2-LTSS python-lxml Affected
SUSE Linux Enterprise Server 15 SP3 python-lxml Affected
SUSE Linux Enterprise Server 15 SP3-BCL python-lxml Affected
SUSE Linux Enterprise Server 15 SP3-LTSS python-lxml Affected
SUSE Linux Enterprise Server 15-LTSS python-lxml Affected
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 12 python3-lxml Released
SUSE Linux Enterprise Server for SAP Applications 12 SP1 python3-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 12 SP2 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 12 SP2 python3-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 12 SP3 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 12 SP3 python3-lxml Released
SUSE Linux Enterprise Server for SAP Applications 12 SP4 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 12 SP4 python3-lxml Released
SUSE Linux Enterprise Server for SAP Applications 15 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP1 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP2 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP3 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP4 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP5 python-lxml Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP5 python3-lxml Affected
SUSE Linux Enterprise Software Development Kit 12 SP2 python3-lxml Affected
SUSE Manager Proxy 3.2 python3-lxml Affected
SUSE Manager Proxy 4.0 python-lxml Affected
SUSE Manager Proxy 4.1 python-lxml Affected
SUSE Manager Proxy 4.2 python-lxml Affected
SUSE Manager Retail Branch Server 4.0 python-lxml Affected
SUSE Manager Retail Branch Server 4.1 python-lxml Affected
SUSE Manager Retail Branch Server 4.2 python-lxml Affected
SUSE Manager Server 3.2 python3-lxml Affected
SUSE Manager Server 4.0 python-lxml Affected
SUSE Manager Server 4.1 python-lxml Affected
SUSE Manager Server 4.2 python-lxml Affected
SUSE OpenStack Cloud 7 python-lxml Affected
SUSE OpenStack Cloud 7 python3-lxml Affected
SUSE OpenStack Cloud 8 python-lxml Affected
SUSE OpenStack Cloud 8 python3-lxml Affected
SUSE OpenStack Cloud 9 python-lxml Affected
SUSE OpenStack Cloud 9 python3-lxml Affected
SUSE OpenStack Cloud Crowbar 8 python-lxml Affected
SUSE OpenStack Cloud Crowbar 8 python3-lxml Affected
SUSE OpenStack Cloud Crowbar 9 python-lxml Affected
SUSE OpenStack Cloud Crowbar 9 python3-lxml Affected
openSUSE Leap 15.3 python-lxml Affected
openSUSE Leap 15.4 python-lxml Released
openSUSE Leap 15.5 python-lxml Affected
openSUSE Leap 15.5 python3-lxml Released
openSUSE Leap 15.6 python-lxml Affected
openSUSE Leap 15.6 python3-lxml Affected
openSUSE Leap Micro 5.3 python-lxml Affected
openSUSE Leap Micro 5.4 python-lxml Affected
openSUSE Leap Micro 5.5 python3-lxml Affected
Container Status
bci/kiwi
suse/manager/5.0/x86_64/server
suse/multi-linux-manager/5.1/x86_64/server
suse/multi-linux-manager/5.2/x86_64/server
python3-lxmlIn progress


SUSE Timeline for this CVE

CVE page created: Wed Apr 22 12:59:01 2026
CVE page last modified: Sat Jul 4 11:30:07 2026