Debian Package Tracker

general

source: flask (main)
version: 1.1.2-2
maintainer: Debian Python Team (DMD)
uploaders: Ondřej Nový [DMD]
arch: all
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.10.1-2
o-o-sec: 0.10.1-2+deb8u1
oldstable: 0.12.1-1
stable: 1.0.2-3
testing: 1.1.2-2
unstable: 1.1.2-2

versioned links

0.10.1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.10.1-2+deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.12.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.0.2-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.1.2-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

python-flask-doc (1 bugs: 0, 1, 0, 0)
python3-flask

action needed

lintian reports 2 errors and 2 warnings high

Lintian reports 2 errors and 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-07-29 Last update: 2020-10-22 04:31

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 1.1.2-3, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit e5ad6e31904a67173f40df49b550ec6e7e888954
Author: Debian Janitor <janitor@jelmer.uk>
Date:   Tue Nov 3 10:55:53 2020 +0000

    Remove obsolete field Name from debian/upstream/metadata (already present in machine-readable debian/copyright).
    
    Changes-By: lintian-brush

Created: 2020-11-07 Last update: 2021-01-09 04:02

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2018-1000656: The Pallets Project flask version Before 0.12.3 contains a CWE-20: Improper Input Validation vulnerability in flask that can result in Large amount of memory usage possibly leading to denial of service. This attack appear to be exploitable via Attacker provides JSON data in incorrect encoding. This vulnerability appears to have been fixed in 0.12.3. NOTE: this may overlap CVE-2019-1010083.
CVE-2019-1010083: The Pallets Project Flask before 1.0 is affected by: unexpected memory usage. The impact is: denial of service. The attack vector is: crafted encoded JSON data. The fixed version is: 1. NOTE: this may overlap CVE-2018-1000656.

Please fix them.

Created: 2018-08-21 Last update: 2020-11-01 04:04

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.1 instead of 4.5.0).

Created: 2020-11-17 Last update: 2020-11-17 05:41

news

[rss feed]

[2020-11-01] flask 1.1.2-2 MIGRATED to testing (Debian testing watch)
[2020-10-26] Accepted flask 1.1.2-2 (source) into unstable (Ondřej Nový)
[2020-04-26] flask 1.1.2-1 MIGRATED to testing (Debian testing watch)
[2020-04-21] Accepted flask 1.1.2-1 (source) into unstable (Ondřej Nový)
[2020-01-13] flask 1.1.1-2 MIGRATED to testing (Debian testing watch)
[2019-12-27] Accepted flask 1.1.1-2 (source) into unstable (Ondřej Nový)
[2019-10-30] flask 1.1.1-1 MIGRATED to testing (Debian testing watch)
[2019-10-25] Accepted flask 1.1.1-1 (source) into unstable (Ondřej Nový)
[2019-08-20] Accepted flask 0.10.1-2+deb8u1 (source all) into oldoldstable (Abhijith PA)
[2018-09-29] flask 1.0.2-3 MIGRATED to testing (Debian testing watch)
[2018-09-27] Accepted flask 1.0.2-3 (source all) into unstable (Ondřej Nový)
[2018-09-20] flask 1.0.2-2 MIGRATED to testing (Debian testing watch)
[2018-09-18] Accepted flask 1.0.2-2 (source) into unstable (Ondřej Nový)
[2018-05-30] flask 1.0.2-1 MIGRATED to testing (Debian testing watch)
[2018-05-16] Accepted flask 1.0.2-1 (source) into unstable (Ondřej Nový)
[2018-03-10] flask 0.12.2-4 MIGRATED to testing (Debian testing watch)
[2018-03-05] Accepted flask 0.12.2-4 (source all) into unstable (Ondřej Nový)
[2018-01-21] flask 0.12.2-3 MIGRATED to testing (Debian testing watch)
[2018-01-15] Accepted flask 0.12.2-3 (source) into unstable (Ondřej Nový)
[2017-07-15] flask 0.12.2-2 MIGRATED to testing (Debian testing watch)
[2017-07-09] Accepted flask 0.12.2-2 (source) into unstable (Ondřej Nový)
[2017-06-26] flask 0.12.2-1 MIGRATED to testing (Debian testing watch)
[2017-06-20] Accepted flask 0.12.2-1 (source) into unstable (Ondřej Nový)
[2017-05-15] Accepted flask 0.12.1-1~bpo8+1 (source all) into jessie-backports->backports-policy, jessie-backports (Ondřej Nový)
[2017-04-18] flask 0.12.1-1 MIGRATED to testing (Debian testing watch)
[2017-04-13] Accepted flask 0.12.1-1 (source) into unstable (Ondřej Nový)
[2017-01-05] flask 0.12-1 MIGRATED to testing (Debian testing watch)
[2016-12-25] Accepted flask 0.12-1 (source) into unstable (Ondřej Nový)
[2016-07-25] flask 0.11.1-1 MIGRATED to testing (Debian testing watch)
[2016-07-19] Accepted flask 0.11.1-1 (source all) into unstable (Piotr Ożarowski) (signed by: Piotr Ozarowski)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian (2, 2)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.1.2-2