Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-0221HistoryJan 16, 2015 - 4:59 p.m.
CVE-2015-0221
2015-01-1616:59:00
Debian Security Bug Tracker
security-tracker.debian.org
15
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.12 Low
EPSS
Percentile
95.3%
The django.views.static.serve view in Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.7.3 reads files an entire line at a time, which allows remote attackers to cause a denial of service (memory consumption) via a long line in a file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | python-django | < 1.7.1-1.1 | python-django_1.7.1-1.1_all.deb |
| Debian | 11 | all | python-django | < 1.7.1-1.1 | python-django_1.7.1-1.1_all.deb |
| Debian | 10 | all | python-django | < 1.7.1-1.1 | python-django_1.7.1-1.1_all.deb |
| Debian | 999 | all | python-django | < 1.7.1-1.1 | python-django_1.7.1-1.1_all.deb |
| Debian | 13 | all | python-django | < 1.7.1-1.1 | python-django_1.7.1-1.1_all.deb |
Related
prion
prion
Design/Logic Flaw
2015-01-16 16:59:00
cve
cve
CVE-2015-0221
2015-01-16 16:59:00
cvelist
cvelist
CVE-2015-0221
2015-01-16 16:00:00
osv
osv
PYSEC-2015-6
2015-01-16 16:59:00
Django DoS in django.views.static.serve
2022-05-17 03:20:50
python-django - security update
2015-02-03 00:00:00
ubuntucve
ubuntucve
CVE-2015-0221
2015-01-13 00:00:00
github
github
Django DoS in django.views.static.serve
2022-05-17 03:20:50
openvas
openvas
Debian: Security Advisory (DLA-143-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3151-1 (python-django - security update)
2015-02-03 00:00:00
Debian: Security Advisory (DSA-3151-1)
2015-02-02 00:00:00
nessus
nessus
Debian DSA-3151-1 : python-django - security update
2015-02-03 00:00:00
Mandriva Linux Security Advisory : python-django (MDVSA-2015:036)
2015-02-09 00:00:00
Fedora 20 : python-django-1.6.10-1.fc20 (2015-0790)
2015-01-27 00:00:00
securityvulns
securityvulns
[ MDVSA-2015:036 ] python-django
2015-02-23 00:00:00
[USN-2469-1] Django vulnerabilities
2015-01-19 00:00:00
debian
debian
[SECURITY] [DSA 3151-1] python-django security update
2015-02-03 06:09:06
[SECURITY] [DSA 3151-1] python-django security update
2015-02-03 06:08:47
[SECURITY] [DLA 143-1] python-django security update
2015-01-29 11:15:34
fedora
fedora
[SECURITY] Fedora 21 Update: python-django-1.6.10-1.fc21
2015-01-26 02:32:42
[SECURITY] Fedora 20 Update: python-django14-1.4.18-1.fc20
2015-01-27 03:00:28
[SECURITY] Fedora 20 Update: python-django-1.6.10-1.fc20
2015-01-27 03:06:04
freebsd
freebsd
django -- multiple vulnerabilities
2015-01-13 00:00:00
ubuntu
ubuntu
Django regression
2015-02-04 00:00:00
Django vulnerabilities
2015-01-13 00:00:00
mageia
mageia
Updated python-django and python-django14 packages fix security vulnerabilities
2015-01-18 01:31:08
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.12 Low
EPSS
Percentile
95.3%
Related for DEBIANCVE:CVE-2015-0221