Package "python3-flask-security"

Name:	python3-flask-security
Description:	Simple security for Flask apps (Python 3)
Latest version:	1.7.5-2ubuntu0.20.04.1
Release:	focal (20.04)
Level:	security
Repository:	universe
Head package:	flask-security
Homepage:	https://github.com/mattupstate/flask-security

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "python3-flask-security"

All arch deb package

APT INSTALL

Other versions of "python3-flask-security" in Focal

Repository	Area	Version
base	universe	1.7.5-2
updates	universe	1.7.5-2ubuntu0.20.04.1

Changelog

Version: 1.7.5-2ubuntu0.20.04.1 2024-05-28 13:07:08 UTC

flask-security (1.7.5-2ubuntu0.20.04.1) focal-security; urgency=medium * SECURITY UPDATE: Possible open redirect vulnerability - debian/patches/CVE-2021-23385.patch: Updated flask_security/core.py, flask_security/utils.py and tests/test_misc.py to prevent possible URL validation bypass and user redirection to an arbitrary URL by providing multiple back slashes such as \\\evil.com/path. - CVE-2021-23385 -- Chrisa Oikonomou <email address hidden> Tue, 21 May 2024 17:10:54 +0300

CVE-2021-23385

This affects all versions of package Flask-Security. When using the get_post_logout_redirect and get_post_login_redirect functions, it is possible to

About - Send Feedback to @ubuntu_updates

Package "python3-flask-security"

Links

Download "python3-flask-security"

Other versions of "python3-flask-security" in Focal

Changelog

Share this page

Bookmarks

Latest updates

security

proposed

PPA updates