Ubuntu
flask-security package

flask-security 4.0.0-1ubuntu0.1 source package in Ubuntu

Changelog

flask-security (4.0.0-1ubuntu0.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Possible open redirect vulnerability
    - debian/patches/CVE-2021-23385.patch: Updated
      flask_security/core.py, flask_security/utils.py and tests/test_misc.py
      to prevent possible URL validation bypass and user redirection to an
      arbitrary URL by providing multiple back slashes such as
      \\\evil.com/path.
    - CVE-2021-23385

 -- Chrisa Oikonomou <email address hidden>  Tue, 21 May 2024 17:43:56 +0300

Upload details

Uploaded by:
Chrisa Oikonomou
Uploaded to:
Jammy
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
python
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Jammy updates universe misc
Jammy security universe misc

Builds

Jammy: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
flask-security_4.0.0.orig.tar.gz 398.4 KiB 4aa0a076fe0faabf01017d727e81fce0800170ce1cbf01534d16549fa6464d87
flask-security_4.0.0-1ubuntu0.1.debian.tar.xz 7.0 KiB edab2886e6743d4442c1f777566a19fb1b9896e51c46e5a07e70ff7a9bd75f3c
flask-security_4.0.0-1ubuntu0.1.dsc 2.3 KiB 36cf9a15f737fd7e913a5f6e720f798b8432bc97429e3922f6083e124287fde6

View changes file

Binary packages built by this source

python3-flask-security: Simple security for Flask apps (Python 3)

 Flask-Security allows you to quickly add common security mechanisms
 to your Flask application. They include:
 .
   * Session based authentication
   * Role management
   * Password encryption
   * Basic HTTP authentication
   * Token based authentication
   * Token based account activation (optional)
   * Token based password recovery / resetting (optional)
   * User registration (optional)
   * Login tracking (optional)
   * JSON/Ajax Support
 .
 This is the Python 3 version of the package.