It was discovered that the debugger in Werkzeug was not restricted to trusted hosts. A remote attacker could possibly use this issue to execute code on the host under certain circumstances.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_name": "python-werkzeug", "binary_version": "0.10.4+dfsg1-1ubuntu1.2+esm2" }, { "binary_name": "python-werkzeug-doc", "binary_version": "0.10.4+dfsg1-1ubuntu1.2+esm2" }, { "binary_name": "python3-werkzeug", "binary_version": "0.10.4+dfsg1-1ubuntu1.2+esm2" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_name": "python-werkzeug", "binary_version": "0.14.1+dfsg1-1ubuntu0.2+esm1" }, { "binary_name": "python-werkzeug-doc", "binary_version": "0.14.1+dfsg1-1ubuntu0.2+esm1" }, { "binary_name": "python3-werkzeug", "binary_version": "0.14.1+dfsg1-1ubuntu0.2+esm1" } ] }