Ubuntu Security Update USN-5948-1: Werkzeug vulnerabilities

Thread starter LinuxBot
Start date Mar 13, 2023

LinuxBot

Member

Mar 13, 2023

#1

It was discovered that Werkzeug did not properly handle the parsing of nameless cookies. A remote attacker could possibly use this issue to shadow other cookies. (CVE-2023-23934) It was discovered that Werkzeug could be made to process unlimited number of multipart form data parts. A remote attacker could possibly use this issue to cause Werkzeug to consume resources, leading to a denial of service. (CVE-2023-25577)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8198-1: Tornado vulnerabilities

Replies: 0

Views: 104

Apr 23, 2026

LinuxBot

Ubuntu Security Update USN-8198-2: Tornado vulnerabilities

Replies: 0

Views: 110

Apr 29, 2026

LinuxBot

Ubuntu Security Update USN-8154-1: Django vulnerabilities

Replies: 0

Views: 138

Apr 7, 2026

LinuxBot

Ubuntu Security Update USN-8232-1: Django vulnerabilities

Replies: 0

Views: 96

May 5, 2026

LinuxBot

Ubuntu Security Update USN-8343-1: multipart vulnerability

Replies: 0

Views: 50

May 28, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 1,937 (members: 7, guests: 1,930)

Latest posts

J
Linux Mint - can't access terminal
- Latest: jbg3
- 35 minutes ago
Getting Started
Linux on a Mac?
- Latest: Skybear
- 47 minutes ago
Laptops / Netbooks
Cannot install any Linux
- Latest: CaffeineAddict
- Today at 6:49 AM
Getting Started
Files missing
- Latest: piorunz
- Today at 6:33 AM
Mint
NEW 2 THE GAME
- Latest: beanburrito
- Today at 6:27 AM
Member Introductions

Top