Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-lts-changes@lists.debian.org> , <dispatch@tracker.debian.org>
Subject: Accepted python-werkzeug 1.0.1+dfsg1-2+deb11u2 (source) into oldstable-security
Date: Fri, 21 Feb 2025 14:00:19 +0000
Signed by: Chris Lamb <lamby@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 18 Feb 2025 13:27:02 +0000
Source: python-werkzeug
Architecture: source
Version: 1.0.1+dfsg1-2+deb11u2
Distribution: bullseye-security
Urgency: high
Maintainer: Python Modules Packaging Team <python-modules-team@lists.alioth.debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Closes: 1070711
Changes:
 python-werkzeug (1.0.1+dfsg1-2+deb11u2) bullseye-security; urgency=high
 .
   * Non-maintainer by the Debian LTS team.
   * CVE-2024-34069: Prevent an issue where the debugger could have allowed
     an attacker to execute code on a developer's machine. This attack required
     the attacker to manipulate the developer into interacting with a domain and
     subdomain that they control and enter the debugger PIN. But if they were
     successful, it would have allowed access to the debugger even if it is only
     running on localhost. (Closes: #1070711).
   * Add a debian/salsa-ci.yml.
Checksums-Sha1:
 6bbe57581a553300bbffa5b7f3284c5d05072a83 2477 python-werkzeug_1.0.1+dfsg1-2+deb11u2.dsc
 4b5aa9ff48e780268966cbfca8cafd82586ba8a9 730032 python-werkzeug_1.0.1+dfsg1.orig.tar.xz
 1d3850007628a6f676082e7133a981c231b27382 13304 python-werkzeug_1.0.1+dfsg1-2+deb11u2.debian.tar.xz
 e9aab04e2f1ff126c81a4043cb6145070ebced1c 9292 python-werkzeug_1.0.1+dfsg1-2+deb11u2_amd64.buildinfo
Checksums-Sha256:
 9b3118ee9f4a4701b0c3f4f7c026fcd2f0a2021b17ac97b4a18b48ee35e25886 2477 python-werkzeug_1.0.1+dfsg1-2+deb11u2.dsc
 12432f3bd8abf78aa8d8f144d3088acdf6612c6984ad8ae812b34c2391f9bffa 730032 python-werkzeug_1.0.1+dfsg1.orig.tar.xz
 1394414af39bde052c813f250dfd03da932dfbd4495820221c9dea59027b63de 13304 python-werkzeug_1.0.1+dfsg1-2+deb11u2.debian.tar.xz
 cfd1c4c8acb4f565b33b8013935321c01bb3d274af1ed1aaed88f78a93faae57 9292 python-werkzeug_1.0.1+dfsg1-2+deb11u2_amd64.buildinfo
Files:
 2245752a9442b165c6a8397ba247878a 2477 python optional python-werkzeug_1.0.1+dfsg1-2+deb11u2.dsc
 e8c571418ddb9a5dddf85e74a7098121 730032 python optional python-werkzeug_1.0.1+dfsg1.orig.tar.xz
 c6389cf4c95c5e686c2141279058addb 13304 python optional python-werkzeug_1.0.1+dfsg1-2+deb11u2.debian.tar.xz
 643ef274f8285b79bb1584a76e037299 9292 python optional python-werkzeug_1.0.1+dfsg1-2+deb11u2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=1R43
-----END PGP SIGNATURE-----

News for package python-werkzeug