SUSE-SU-2022:3093-1 -- SLES python3-Flask-Security-TooID: oval:org.secpod.oval:def:89047500 | Date: (C)2022-09-09 (M)2023-05-31 |
Class: PATCH | Family: unix |
This update for python-Flask-Security-Too fixes the following issues: - CVE-2021-21241: Fixed an issue where GET requests lacking CSRF protection to certain endpoints could return the user"s authentication token .
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
SUSE Linux Enterprise Server 15 SP4 |
SUSE Linux Enterprise Server 15 SP3 |
SUSE Linux Enterprise Desktop 15 SP3 |
Product: |
python3-Flask-Security-Too |