Описание
Taipy 3.1.1 affected by CVEs on flask-core and pymongo
Summary
Indirect CVEs affect Taipy 3.1.1
Details
Taipy 3.1.1 is affected by two existing CVEs: CVE-2024-1681 affects flask-core <4.0.1 and taipy 3.1.1 needs <=4.0.0 CVE-2024-5629 affects pymongo <4.6.3 and taipy 3.1.1 needs <=4.6.1
Please see References for further details.
Patch
please upgrade to the following versions:
Fixed on patch versions: >=3.1.2 and on major releases: >=4.0.0
Impact
pre-commit breaks when using dependency Taipy 3.1.1
Пакеты
Наименование
taipy
pip
Затронутые версииВерсия исправления
<= 3.1.1
4.0.0