-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- ------------------------------------------------------------------------- Debian Security Advisory DSA-5442-1
security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff
June 29, 2023
https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : flask
CVE ID : CVE-2023-30861
It was discovered that in some conditions the Flask web framework may
disclose a session cookie.
For the oldstable distribution (bullseye), this problem has been fixed
in version 1.1.2-2+deb11u1.
We recommend that you upgrade your flask packages.
For the detailed security status of flask please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/flask
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at:
https://www.debian.org/security/
Mailing list:
debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmSdym8ACgkQEMKTtsN8 TjYRyhAAncBVfFUWx/LOdmid3NG+YIytJnj/ALdxMDnya+Z6DMZtoBzyw9M1wk5P AtlRuP1/BuwACQHUbSahR7eszOLLyLQOGWh6Qaff7784DpJBwZeTiLtSM+Zh+a5j 3h19fYfYyCvcPhjKiLXg80jjQcYMWFttOWBZXNyQ8wpuyGRPT23yt2VaFhO7dy6j /zvPuXlLyMBtfDJOSvhZDZi95E7PtsWaQ6UmmEFUGzUW+dcTR/j9Qknfmxop14If fv2Obvxf467Ms0wYcP0T26rgmc7FP9VqaHlsfra7HzDl7VU1egfiwJVxxQDNiRhx UoAS4LjF5TgXT8tdVKB5/Y5ibdLLydvWNkky0nsgCAimF3vruZB4ncKDCl4TxBaz +08ENLD/NS1A6LlcSriAWq0u/JSe13Xbpq+oxBll26Mu0PaOU9lwqQeNDj3a7Gcq QW65OYDhZgP+GjcKkaSoG0mQ9b3Ni3tIQ14KeG8GUwlr8dKPL4qK658Vm5NXbQvM evVGnzrFg0tqCI/MVA6qSugkF8Mxr2XXnI0n4kWS/yKG7grjVBm3+oNJJcuPdzUk aJFY5S1d47tAmH6xQapnMDZCVJ47YdqnJYz1d97S+T+U2clYK2tka1edLfL3kDQ2 wH01YsF2WSh/TRzNEFRVl2APdbkSeU3Y1y/nPt9mdb0oZdUmQDU=
=puZp
-----END PGP SIGNATURE-----
--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)