SUSE-SU-2022:3093-1 -- SLES python3-Flask-Security-Too| ID: oval:org.secpod.oval:def:89047500 | Date: (C)2022-09-09 (M)2023-05-31 |
| Class: PATCH | Family: unix |
This update for python-Flask-Security-Too fixes the following issues: - CVE-2021-21241: Fixed an issue where GET requests lacking CSRF protection to certain endpoints could return the user"s authentication token .
| Platform: |
| SUSE Linux Enterprise Desktop 15 SP4 |
| SUSE Linux Enterprise Server 15 SP4 |
| SUSE Linux Enterprise Server 15 SP3 |
| SUSE Linux Enterprise Desktop 15 SP3 |
| Product: |
| python3-Flask-Security-Too |
