Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-3444HistoryJul 31, 2012 - 5:55 p.m.
CVE-2012-3444
2012-07-3117:55:00
Debian Security Bug Tracker
security-tracker.debian.org
7
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.02 Low
EPSS
Percentile
88.7%
The get_image_dimensions function in the image-handling functionality in Django before 1.3.2 and 1.4.x before 1.4.1 uses a constant chunk size in all attempts to determine dimensions, which allows remote attackers to cause a denial of service (process or thread consumption) via a large TIFF image.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
| Debian | 11 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
| Debian | 10 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
| Debian | 999 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
| Debian | 13 | all | python-django | <Β 1.4.1-1 | python-django_1.4.1-1_all.deb |
Related
osv
osv
Django vulnerable to Improper Restriction of Operations within the Bounds of a Memory Buffer
2022-05-17 05:12:01
PYSEC-2012-4
2012-07-31 17:55:00
python-django - several
2012-08-14 00:00:00
github
github
ubuntucve
ubuntucve
CVE-2012-3444
2012-07-31 00:00:00
prion
prion
Design/Logic Flaw
2012-07-31 17:55:00
cve
cve
CVE-2012-3444
2012-07-31 17:55:00
gitlab
gitlab
Improper Restriction of Operations within the Bounds of a Memory Buffer
2022-05-17 00:00:00
nessus
nessus
openSUSE Security Update : python-django (openSUSE-SU-2012:0970-1)
2014-06-13 00:00:00
Debian DSA-2529-1 : python-django - several vulnerabilities
2012-08-15 00:00:00
openvas
openvas
Ubuntu Update for python-django USN-1560-1
2012-09-11 00:00:00
Mandriva Update for python-django MDVSA-2012:143 (python-django)
2012-08-24 00:00:00
freebsd
freebsd
django -- multiple vulnerabilities
2012-07-30 00:00:00
seebug
seebug
Djangoθ·¨η«θζ¬ζ§θ‘εδΈ€δΈͺζη»ζε‘ζΌζ΄
2012-08-03 00:00:00
ubuntu
ubuntu
Django vulnerabilities
2012-09-10 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: Django-1.3.2-1.fc16
2012-08-10 22:34:03
[SECURITY] Fedora 17 Update: Django-1.4.3-1.fc17
2012-12-20 03:20:48
[SECURITY] Fedora 17 Update: Django-1.4.1-1.fc17
2012-08-10 22:27:19
securityvulns
securityvulns
[ MDVSA-2012:143 ] python-django
2012-09-03 00:00:00
debian
debian
[SECURITY] [DSA 2529-1] python-django security update
2012-08-14 20:05:21
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.02 Low
EPSS
Percentile
88.7%
Related for DEBIANCVE:CVE-2012-3444