ELA-318-1 python-werkzeug security update

Debian 10223 Published 2020-11-25 06:36 by Philipp Esselbach

News

A python-werkzeug security update has been released for Debian GNU/Linux 8 LTS to address an issue where the WSGI server included in Werkzeug would redirect requests if the URL path started with a double slash.

ELA-318-1 python-werkzeug security update

Package python-werkzeug
Version 0.9.6+dfsg-1+deb8u2
Related CVEs CVE-2020-28724

It was found that the WSGI server included in Werkzeug would redirect requests if the URL path started with a double slash.

For Debian 8 jessie, these problems have been fixed in version 0.9.6+dfsg-1+deb8u2.

We recommend that you upgrade your python-werkzeug packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/
ELA-318-1 python-werkzeug security update

USN-4643-1: atftp vulnerabilities

mutt (SSA:2020-329-01)

Windows

Software 42757
UniGetUI 3.1.4 beta 1 released
2024-11-19 06:43 by Philipp Esselbach
Microsoft 11800
PowerShell 7.5 RC-1 released
2024-11-18 18:30 by Philipp Esselbach
Windows 11 499
Windows 11 Insider Preview Build 22635.4510 (Beta Channel) released
2024-11-16 07:23 by Philipp Esselbach

Linux

Software 42757
Samba 4.20.6 released
2024-11-19 17:18 by Philipp Esselbach
Software 42757
PHP 8.3.14 released
2024-11-19 17:13 by Philipp Esselbach
Software 42757
PHP 8.1.31 released
2024-11-19 17:10 by Philipp Esselbach

macOS

Apple 10246
visionOS 2.2 Beta 3 released
2024-11-19 07:34 by Philipp Esselbach
Apple 10246
tvOS 18.2 Beta 3 released
2024-11-19 07:34 by Philipp Esselbach
Apple 10246
visionOS 2.2 Beta 2 released
2024-11-13 06:32 by Philipp Esselbach

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...