| Summary: | python-flask new security issue CVE-2023-30861 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | David Walser <luigiwalser> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | critical | ||
| Priority: | Normal | CC: | andrewsfarm, davidwhodgins, herman.viaene, sysadmin-bugs, yvesbrungard |
| Version: | 8 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA8-64-OK | ||
| Source RPM: | python-flask-2.2.3-1.mga9.src.rpm | CVE: | |
| Status comment: | |||
|
Description
David Walser
2023-05-22 14:58:57 CEST
David Walser
2023-05-22 14:59:25 CEST
Status comment:
(none) =>
Fixed upstream in 2.2.5 Assigning to the Python stack maintainers. Assignee:
bugsquad =>
python Cauldron updated to 2.3.2 Patch applied to 1.1.2 in Mageia 8 https://github.com/pallets/flask/commit/afd63b16170b7c047f5758eb910c416511e9c965 python3-flask-1.1.2-1.1.mga8 Src: python-flask-1.1.2-1.1.mga8 CC:
(none) =>
yves.brungard_mageia MGA8-64 MATE on Acer Aspire 5253 No installation issues. No wiki, no previous updates. Tried to find some dependent package that I have any feeling for and found pgadmin4. Launched that one under trace and operated it a little. Found no refs to python3-flask (to other python3 loads of them. This is developers area, so OK on clean install as with others, since nothing seems to suffer from this update. Whiteboard:
MGA8TOO =>
MGA8TOO MGA8-64-OK Validating. CC:
(none) =>
andrewsfarm, sysadmin-bugs
Dave Hodgins
2023-06-08 19:14:26 CEST
Keywords:
(none) =>
advisory An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2023-0193.html Resolution:
(none) =>
FIXED |