Overview

File _patchinfo of Package patchinfo.43036

<patchinfo incident="43036">
  <!--generated with prepare-update from request 402817-->
  <issue tracker="bnc" id="1258700">VUL-0: CVE-2026-27205: python-Flask: information disclosure due to Flask session not adding the `Vary: Cookie` header</issue>
  <issue tracker="cve" id="2026-27205"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>nkrapp</packager>
  <summary>Security update for python-Flask</summary>
  <description>This update for python-Flask fixes the following issue:

- CVE-2026-27205: information disclosure due to Flask session not adding the `Vary: Cookie` header (bsc#1258700).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places