Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-3443HistoryJul 31, 2012 - 5:55 p.m.
CVE-2012-3443
2012-07-3117:55:00
Debian Security Bug Tracker
security-tracker.debian.org
11
0.021 Low
EPSS
Percentile
89.1%
The django.forms.ImageField class in the form system in Django before 1.3.2 and 1.4.x before 1.4.1 completely decompresses image data during image validation, which allows remote attackers to cause a denial of service (memory consumption) by uploading an image file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
| Debian | 11 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
| Debian | 10 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
| Debian | 999 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
| Debian | 13 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
Related
prion
prion
Design/Logic Flaw
2012-07-31 17:55:00
gitlab
gitlab
Improper Input Validation
2022-05-17 00:00:00
cvelist
cvelist
CVE-2012-3443
2012-07-31 17:00:00
osv
osv
PYSEC-2012-3
2012-07-31 17:55:00
Django Image Field Vulnerable to Image Decompression Bombs
2022-05-17 05:12:01
python-django - several
2012-08-14 00:00:00
cve
cve
CVE-2012-3443
2012-07-31 17:55:00
github
github
Django Image Field Vulnerable to Image Decompression Bombs
2022-05-17 05:12:01
ubuntucve
ubuntucve
CVE-2012-3443
2012-07-31 00:00:00
openvas
openvas
Fedora Update for Django FEDORA-2012-20224
2012-12-26 00:00:00
FreeBSD Ports: py26-django, py27-django
2012-08-10 00:00:00
Fedora Update for Django FEDORA-2012-11416
2012-08-14 00:00:00
seebug
seebug
Djangoθ·¨η«θζ¬ζ§θ‘εδΈ€δΈͺζη»ζε‘ζΌζ΄
2012-08-03 00:00:00
nessus
nessus
FreeBSD : django -- multiple vulnerabilities (f01292a0-db3c-11e1-a84b-00e0814cab4e)
2012-08-01 00:00:00
Fedora 16 : Django-1.3.2-1.fc16 (2012-11416)
2012-08-13 00:00:00
ubuntu
ubuntu
Django vulnerabilities
2012-09-10 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: Django-1.4.1-1.fc17
2012-08-10 22:27:19
[SECURITY] Fedora 16 Update: Django-1.3.2-1.fc16
2012-08-10 22:34:03
[SECURITY] Fedora 17 Update: Django-1.4.3-1.fc17
2012-12-20 03:20:48
debian
debian
[SECURITY] [DSA 2529-1] python-django security update
2012-08-14 20:15:26
securityvulns
securityvulns
[ MDVSA-2012:143 ] python-django
2012-09-03 00:00:00
freebsd
freebsd
django -- multiple vulnerabilities
2012-07-30 00:00:00