Package "flask"

Name:	flask
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: micro web framework based on Werkzeug and Jinja2 - Python 3.x
Latest version:	2.0.1-2ubuntu1.2
Release:	jammy (22.04)
Level:	security
Repository:	main

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "flask" in Jammy

Repository	Area	Version
base	main	2.0.1-2ubuntu1
base	universe	2.0.1-2ubuntu1
security	universe	2.0.1-2ubuntu1.2
updates	main	2.0.1-2ubuntu1.2
updates	universe	2.0.1-2ubuntu1.2

Packages in group

Deleted packages are displayed in grey.

python3-flask

Changelog

Version: 2.0.1-2ubuntu1.2 2026-03-18 07:07:56 UTC

flask (2.0.1-2ubuntu1.2) jammy-security; urgency=medium * SECURITY UPDATE: cache poisoning - debian/patches/CVE-2026-27205.patch: session is marked as accessed for operations that only access the keys but not the values, such as `in` and `len` - CVE-2026-27205 -- Shishir Subedi <email address hidden> Mon, 16 Mar 2026 16:03:31 +0545

Source diff to previous version

CVE-2026-27205

Flask is a web server gateway interface (WSGI) web application framework. In versions 3.1.2 and below, when the session object is accessed, Flask sho

Version: 2.0.1-2ubuntu1.1	2023-05-29 14:07:04 UTC
`flask (2.0.1-2ubuntu1.1) jammy-security; urgency=medium * SECURITY UPDATE: Expose sensitive information - debian/patches/CVE-2023-30861.patch: set 'Vary: Cookie' header consistently for session in src/flask/sessions.py, tests/test_basic.py. - CVE-2023-30861 -- Leonidas Da Silva Barbosa <email address hidden> Wed, 17 May 2023 10:22:20 -0300`

About - Send Feedback to @ubuntu_updates

Package "flask"

Links

Other versions of "flask" in Jammy

Packages in group

Changelog

Share this page

Bookmarks

Latest updates

updates

proposed

security

PPA updates