Fedora has issued an advisory on April 1: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/AZVWMLO633IKUEQYVR6WOLOCGPLCSHOX/ Version 1.1.0 fixes unspecified security issues: https://github.com/python-restx/flask-restx/releases/tag/1.1.0 Mageia 8 is also affected.
Whiteboard: (none) => MGA8TOO
Assigning to our Python stack maintainers.
CC: (none) => marja11Assignee: bugsquad => python
1.1.0 is building for cauldron.
CC: (none) => yves.brungard_mageia
This new version requires python-werkzeug > 2, but we have 1.0.1 in Mageia 8. Should we update it too? This is probably the whole flask stack which uses it.
Probably, we'll just have to be careful about anything that depends on werkzeug.
python3-flask-restx-1.1.0-1.mga8.noarch.rpm is now built. There is no change in the dependence for python-werkzeug which should only be different from 2.0.0, what is badly translated in requirements.
Assignee: python => qa-bugsVersion: Cauldron => 8Whiteboard: MGA8TOO => (none)
SRPM: python-flask-restx-1.1.0-1.mga8
Source RPM: python-flask-restx-0.5.1-3.mga9.src.rpm => python-flask-restx-0.5.1-1.mga8.src.rpm
MGA8-64 MATE on Acer Aspire 5253 No installation issues. Ref bug 29509 OK on clean install.
CC: (none) => herman.viaeneWhiteboard: (none) => MGA8-64-OK
Validating.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
CC: (none) => davidwhodginsKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2023-0142.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED