UbuntuUpdates.org

Package "python-werkzeug"

Name: python-werkzeug

Description:

collection of utilities for WSGI applications
Latest version: 0.9.4+dfsg-1.1ubuntu2.1
Release: trusty (14.04)
Level: updates
Repository: main
Homepage: http://werkzeug.pocoo.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "python-werkzeug"

All arch deb package
APT INSTALL

Other versions of "python-werkzeug" in Trusty

Repository Area Version
base main 0.9.4+dfsg-1.1ubuntu1
security main 0.9.4+dfsg-1.1ubuntu2.1
PPA: Postgresql 0.16.0+dfsg1-1
PPA: Postgresql 0.16.0+dfsg1-1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.9.4+dfsg-1.1ubuntu2.1 2017-10-25 22:06:34 UTC

  python-werkzeug (0.9.4+dfsg-1.1ubuntu2.1) trusty-security; urgency=medium

  * SECURITY UPDATE: Cross-site vulnerability in render_full function allows
    attackers to inject arbitrary script or HTML.
    - debian/patches/CVE-2016-10516.patch: in werkzeub/debug/tbtools.py.
    - CVE-2016-10516

 -- <email address hidden> (Leonidas S. Barbosa) Tue, 24 Oct 2017 17:13:01 -0300
Source diff to previous version
CVE-2016-10516 Cross-site scripting (XSS) vulnerability in the render_full function in debug/tbtools.py in the debugger in Pallets Werkzeug before 0.11.11 (as used

Version: 0.9.4+dfsg-1.1ubuntu2 2014-10-30 06:06:43 UTC

  python-werkzeug (0.9.4+dfsg-1.1ubuntu2) trusty-proposed; urgency=medium

  * Convert arguments to bytes for hmac.compare_digest. Fixes a test
    failure with flask. https://github.com/mitsuhiko/werkzeug/issues/537
    LP: #1382085.
 -- Matthias Klose <email address hidden> Thu, 16 Oct 2014 16:43:20 +0200
1382085 python-werkzeug 0.9.4 needs an update to work with Python 2.7.8


About   -   Send Feedback to @ubuntu_updates