Red Hat Satellite package python-flask flagged by Nessus Scan. No update available.

Solution In Progress - Updated -

Issue

A Nessus security scan reports package python-flask needs to be updated. However, the updated packages are not available in the RHEL or Satellite repositories.

Nessus scan states:

    Upgrade to Flask version 0.12.3 or later. 
    Path : unknown Installed version : 0.10.x Fixed version : 0.12.3

The scan further references CVE-2018-1000656, which is a denial of service vulnerability.

Environment

  • Red Hat Satellite 6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In