hi! I have prepared a fix to flask to fix CVE-2026-27205 in bullseye (I've also submitted PU requests for bookworm & trixie).
The branch can be found here: https://salsa.debian.org/python-team/packages/flask/-/tree/debian/bullseye?ref_type=heads I am still not very wise with how to request a DLA or the process mentioned in https://lts-team.pages.debian.net/wiki/Development.html#claim-the-issue-in-the-security-tracker-in-dla-needed-txt Am I right in thinking that I need some kind soul to add flask to dla-needed.txt and also reserve me a DLA number ? Cheers! Chris
