Security update for python-Django (important)

openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2024:0282-1 Rating: important References: 1229823 1229824 Cross-References: CVE-2024-45230 CVE-2024-45231 CVSS scores: CVE-2024-45230 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2024-45231 SUSE...

Fedora 39 : python-django (2024-e2bde0853b)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-e2bde0853b advisory. urlize and urlizetrunc were subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters. Tenable has extract...

Fedora 40 : python-django (2024-4a08381122)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-4a08381122 advisory. urlize and urlizetrunc were subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters. Tenable has extract...

OPENSUSE-SU-2024:0282-1 Security update for python-Django

This update for python-Django fixes the following issues: CVE-2024-45230: Fixed Potential denial-of-service vulnerability in django.utils.html.urlize boo1229823 CVE-2024-45231: Potential user email enumeration via response status on password reset boo1229824...

openSUSE 15 Security Update : python-Django (SUSE-SU-2024:3139-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3139-1 advisory. - CVE-2024-45230: Fixed potential denial-of-service vulnerability in django.utils.html.urlize. bsc1229823 - CVE-2024-45231: Fixed potential user emai...

SUSE-SU-2024:3139-1 Security update for python-Django

This update for python-Django fixes the following issues: - CVE-2024-45230: Fixed potential denial-of-service vulnerability in django.utils.html.urlize. bsc1229823 - CVE-2024-45231: Fixed potential user email enumeration via response status on password reset. bsc1229824...

Ubuntu: Security Advisory (USN-6987-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for python-Django (important)

openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2024:0272-1 Rating: important References: 1228629 1228630 1228631 1228632 Cross-References: CVE-2024-41989 CVE-2024-41990 CVE-2024-41991 CVE-2024-42005 CVSS scores: CVE-2024-41989 NVD : 7.5...

OPENSUSE-SU-2024:0251-1 Security update for python-Django

This update for python-Django fixes the following issues: - CVE-2023-23969: Potential denial-of-service via Accept-Language headers boo1207565 - CVE-2024-38875: Potential denial-of-service attack via certain inputs with a very large number of brackets boo1227590 - CVE-2024-39329: Username...

Security update for python-Django (important)

openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2024:0251-1 Rating: important References: 1207565 1227590 1227593 1227594 1227595 Cross-References: CVE-2023-23969 CVE-2024-38875 CVE-2024-39329 CVE-2024-39330 CVE-2024-39614 CVSS scores: CVE-2023-23969 NVD :...

openSUSE 15 Security Update : python-Django (SUSE-SU-2024:2861-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2024:2861-1 advisory. - Fixed code in CVE-2024-41990 patch Tenable has extracted the preceding description block directly from the SUSE security advisory. Note that Nessus has not...

openSUSE 15 Security Update : python-Django (SUSE-SU-2024:2817-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2817-1 advisory. - CVE-2024-42005: Fixed SQL injection in QuerySet.values and valueslist bsc1228629 - CVE-2024-41989: Fixed Memory exhaustion in...

SUSE SLES15 / openSUSE 15 Security Update : python-Django (SUSE-SU-2024:2816-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2816-1 advisory. - CVE-2024-42005: Fixed SQL injection in QuerySet.values and valueslist bsc1228629 - CVE-2024-41989: Fixed Memory exhaustion in...

11x-wagtail-blog (>=0.0.0 <=0.2.0), aldryn-django (>=5.0.2.0 <=5.0.11.0) +240 more potentially affected by CVE-2024-42005 via django (>=5.0.0 <=5.0.7)

django PYPI version =5.0.0, =0.0.0, =5.0.2.0, =0.0.15, =1.14.3, =0.0.20, =0.0.13, =0.0.19, =0.0.34, =0.0.50, =0.0.5, =0.0.11, =1.0.3, =0.1.0, =0.2.5 and more Source cves: CVE-2024-42005 Source advisory: OSV:GHSA-PV4P-CWWG-4RPH...

SUSE-SU-2024:2817-1 Security update for python-Django

This update for python-Django fixes the following issues: - CVE-2024-42005: Fixed SQL injection in QuerySet.values and valueslist bsc1228629 - CVE-2024-41989: Fixed Memory exhaustion in django.utils.numberformat.floatformat bsc1228630 - CVE-2024-41990: Fixed denial-of-service vulnerability in...

SUSE-SU-2024:2816-1 Security update for python-Django

This update for python-Django fixes the following issues: - CVE-2024-42005: Fixed SQL injection in QuerySet.values and valueslist bsc1228629 - CVE-2024-41989: Fixed Memory exhaustion in django.utils.numberformat.floatformat bsc1228630 - CVE-2024-41990: Fixed denial-of-service vulnerability in...

Ubuntu: Security Advisory (USN-6946-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-7dac82a14e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-82547e3e16)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : python-Django (SUSE-SU-2024:2616-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2024:2616-1 advisory. - Fixed regression in previous CVE fixes that made the package not work with Python 3.6 Tenable has extracted the preceding description block directly from t...