[ubuntu/kinetic-security] flask 2.0.3-1ubuntu1.1 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Mon May 29 12:42:23 UTC 2023
flask (2.0.3-1ubuntu1.1) kinetic-security; urgency=medium
* SECURITY UPDATE: Expose sensitive information
- debian/patches/CVE-2023-30861.patch: set 'Vary: Cookie'
header consistently for session in src/flask/sessions.py,
tests/test_basic.py.
- CVE-2023-30861
Date: 2023-05-18 14:52:08.702116+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/flask/2.0.3-1ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the kinetic-changes
mailing list