RHSA-2024:9975 Red Hat Security Advisory: RHOSP 17.1.4 (python-werkzeug) security update

Bulletin has no description...

RHSA-2024:9976 Red Hat Security Advisory: RHOSP 17.1.4 (python-werkzeug) security update

Bulletin has no description...

python-werkzeug: user may execute code on a developer's machine

A flaw was found in Werkzeug, where an attacker may be able to execute code on a developer's machine under some circumstances. This issue requires the attacker to get the developer to interact with a domain and subdomain they control and enter the debugger PIN; if they are successful, it allows...

Important: Red Hat Security Advisory: RHOSP 17.1.4 (python-werkzeug) security update

An update for python-werkzeug is now available for Red Hat OpenStack Platform RHOSP 17.1 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

Fedora 41 : python-werkzeug (2024-08eb67ed86)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-08eb67ed86 advisory. - Update to 3.0.6 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

[SECURITY] Fedora 41 Update: python-werkzeug-3.0.6-1.fc41

Werkzeug =3D=3D=3D=3D=3D=3D=3D=3D Werkzeug started as simple collection of various utilities for WSGI applications and has become one of the most advanced WSGI utility modules. It includes a powerful debugger, full featured request and response objects, HTTP utilities to handle entity tags, cache...

Mageia: Security Advisory (MGASA-2024-0351)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-5cf9589726)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 40 : python-werkzeug (2024-5cf9589726)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-5cf9589726 advisory. - Update to 3.0.6 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

Ubuntu: Security Advisory (USN-7093-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : python-Werkzeug (SUSE-SU-2024:3810-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:3810-1 advisory. - CVE-2024-49767: Fixed possible resource exhaustion when parsing file data in forms bsc1232449. Tenable...

Security update for python-Werkzeug

This update for python-Werkzeug fixes the following issues: CVE-2024-49767: Fixed possible resource exhaustion when parsing file data in forms bsc1232449. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE-SU-2024:3810-1 Security update for python-Werkzeug

This update for python-Werkzeug fixes the following issues: - CVE-2024-49767: Fixed possible resource exhaustion when parsing file data in forms bsc1232449...

AZL-51723 CVE-2024-49767 affecting package python-werkzeug for versions less than 3.0.3-2

Werkzeug is a Web Server Gateway Interface web application library. Applications using werkzeug.formparser.MultiPartParser corresponding to a version of Werkzeug prior to 3.0.6 to parse multipart/form-data requests e.g. all flask applications are vulnerable to a relatively simple but effective...

AZL-51690 CVE-2024-49767 affecting package python-werkzeug for versions less than 2.3.7-3

Werkzeug is a Web Server Gateway Interface web application library. Applications using werkzeug.formparser.MultiPartParser corresponding to a version of Werkzeug prior to 3.0.6 to parse multipart/form-data requests e.g. all flask applications are vulnerable to a relatively simple but effective...

RHSA-2024:0214 Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (python-werkzeug) security update

Bulletin has no description...

RHSA-2024:0189 Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (python-werkzeug) security update

Bulletin has no description...

RHSA-2023:1281 Red Hat Security Advisory: Red Hat OpenStack Platform (python-werkzeug) security update

Bulletin has no description...

CBL Mariner 2.0 Security Update: python-werkzeug (CVE-2023-46136)

The version of python-werkzeug installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-46136 advisory. - Werkzeug is a comprehensive WSGI web application library. If an upload of a file that starts with C...

CBL Mariner 2.0 Security Update: python-werkzeug (CVE-2024-34069)

The version of python-werkzeug installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-34069 advisory. - Werkzeug is a comprehensive WSGI web application library. The debugger in affected versions of...