Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-6975

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x before 2.1.6 allows Uncontrolled Memory Consumption via a malicious attacker-supplied value to the...

7.5CVSS7.3AI score0.05399EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/06/23 12:0 a.m.33 views

Fedora: Security Advisory for python-django (FEDORA-2020-2e7d30f7aa)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.3AI score0.65336EPSS
Exploits15References2
OSV
OSV
added 2019/08/02 12:24 p.m.8 views

SUSE-SU-2019:2042-1 Security update for python-Django

This update for python-Django fixes the following issues: - Fixed CVE-2019-6975 bsc1124991 Added CVE-2019-6975.patch to fix uncontrolled memory consumption If django.utils.numberformat.format -- used by contrib.admin as well as the the floatformat, filesizeformat, and intcomma templates filters -...

7.5CVSS7.4AI score0.05399EPSS
Exploits0References3
ALT Linux
ALT Linux
added 2019/07/15 12:0 a.m.39 views

Security fix for the ALT Linux 9 package python3-module-django version 2.2.3-alt1

July 15, 2019 Alexey Shabalin 2.2.3-alt1 - 2.2.3 - build python3 only - rename package to python3-module-django2.2 - Fixes for the following security vulnerabilities: + CVE-2019-12781 Incorrect HTTP detection with reverse-proxy connecting via HTTPS + CVE-2019-12308 AdminURLFieldWidget XSS +...

5.8CVSS6.6AI score0.2549EPSS
Exploits0
ALT Linux
ALT Linux
added 2019/07/15 12:0 a.m.23 views

Security fix for the ALT Linux 10 package python3-module-django version 2.2.3-alt1

July 15, 2019 Alexey Shabalin 2.2.3-alt1 - 2.2.3 - build python3 only - rename package to python3-module-django2.2 - Fixes for the following security vulnerabilities: + CVE-2019-12781 Incorrect HTTP detection with reverse-proxy connecting via HTTPS + CVE-2019-12308 AdminURLFieldWidget XSS +...

5.8CVSS6.6AI score0.2549EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/07/08 12:0 a.m.31 views

Debian DSA-4476-1 : python-django - security update

Three security issues were found in Django, a Python web development framework, which could result in denial of service, incomplete sanitisation of clickable links or missing redirects of HTTP requests to HTTPS. C Tenable Network Security, Inc. The descriptive text and package checks in this plug...

7.5CVSS6.2AI score0.05399EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2019/07/07 12:0 a.m.28 views

Debian: Security Advisory (DSA-4476-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.05399EPSS
Exploits0References4
Debian
Debian
added 2019/07/05 6:3 p.m.342 views

[SECURITY] [DSA 4476-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4476-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 05, 2019 https://www.debian.org/security/faq -...

7.5CVSS7.3AI score0.05399EPSS
Exploits0
OSV
OSV
added 2019/05/10 12:14 p.m.9 views

SUSE-SU-2019:1215-1 Security update for python-Django1

This update for python-Django1 fixes the following issue: Security issue fixed: - CVE-2019-6975: Fixed memory exhaustion in django.utils.numberformat.format bsc1124991...

7.5CVSS7.5AI score0.05399EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/03/21 12:0 a.m.29 views

Fedora 29 : python2-django1.11 (2019-f528d75a69)

Update to the 1.11.20 security fix release Fixes CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...

7.5CVSS6.3AI score0.05399EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/03/21 12:0 a.m.31 views

Fedora Update for python2-django1.11 FEDORA-2019-5ad2149e99

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/03/04 12:0 a.m.23 views

Fedora 28 : python-django (2019-9760933547)

fix CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format ---- fix CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

7.5CVSS6.3AI score0.05399EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/03/01 12:0 a.m.24 views

Fedora 29 : python-django (2019-ec55814c1c)

fix CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format ---- fix CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

7.5CVSS6.3AI score0.05399EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/02/26 12:0 a.m.35 views

Django < 2.16 Uncontrolled Memory Consumption Vulnerability - Linux

Django is prone to an uncontrolled memory consumption vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.05399EPSS
Exploits0References2
OSV
OSV
added 2019/02/14 8:38 a.m.8 views

MGASA-2019-0086 Updated python-django packages fix security vulnerability

If django.utils.numberformat.format -- used by contrib.admin as well as the floatformat, filesizeformat, and intcomma templates filters -- received a Decimal with a large number of digits or a large exponent, it could lead to significant memory usage due to a call to ':f'.format CVE-2019-6975...

7.5CVSS7.4AI score0.05399EPSS
Exploits0References3
Mageia
Mageia
added 2019/02/14 8:38 a.m.33 views

Updated python-django packages fix security vulnerability

If django.utils.numberformat.format -- used by contrib.admin as well as the floatformat, filesizeformat, and intcomma templates filters -- received a Decimal with a large number of digits or a large exponent, it could lead to significant memory usage due to a call to ':f'.format CVE-2019-6975...

7.5CVSS2.6AI score0.05399EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2019/02/12 3:36 p.m.2 views

cklauth (>=0.1.0 <=0.3.0), dj-saml-idp (>=1.1.0 <=1.2.1) +18 more potentially affected by CVE-2019-6975 via django (>=2.0.0 <=2.0.1)

django PYPI version =2.0.0, =0.1.0, =1.1.0, =4.3.1, =1.2.7, =0.1.0, =1.7.0, =0.0.3, =0.0.20, =0.1.0 - djangotheming =0.1.0 - fastaudiovisal =0.0.1 - fastaudiovisual =0.0.1 and more Source cves: CVE-2019-6975 Source advisory: OSV:GHSA-WH4H-V3F2-R2PP...

7.5CVSS6.7AI score0.05399EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2019/02/12 3:36 p.m.5 views

aileen (>=0.2.0.dev20181221 <=0.2.1), autogenerated-api (=1.1.9) +37 more potentially affected by CVE-2019-6975 via django (>=1.11.0 <=1.11.18)

django PYPI version =1.11.0, =0.2.0.dev20181221, =0.0.19, =4.4.1, =0.6.0, =0.5.0, =0.1.0, =1.0.0, =1.0.1 - django-defender =0.5.0 - django-galaxy =0.0.1 - django-gfiles =0.0.1 and more Source cves: CVE-2019-6975 Source advisory: OSV:GHSA-WH4H-V3F2-R2PP...

7.5CVSS6.7AI score0.05399EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2019/02/11 1:29 p.m.4 views

aileen (>=0.2.0.dev20181221 <=0.2.1), autogenerated-api (=1.1.9) +37 more potentially affected by CVE-2019-6975 via django (>=1.11.0 <=1.11.18)

django PYPI version =1.11.0, =0.2.0.dev20181221, =0.0.19, =4.4.1, =0.6.0, =0.5.0, =0.1.0, =1.0.0, =1.0.1 - django-defender =0.5.0 - django-galaxy =0.0.1 - django-gfiles =0.0.1 and more Source cves: CVE-2019-6975 Source advisory: OSV:PYSEC-2019-18...

7.5CVSS6.7AI score0.05399EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2019/02/11 1:29 p.m.4 views

boorunaut (>=0.1.0 <=0.4.2), cloudxns-ddns-service (=1.0.0) +116 more potentially affected by CVE-2019-6975 via django (>=2.1.0 <=2.1.5)

django PYPI version =2.1.0, =0.1.0, =0.10.0, =2.4.0, =0.3.1, =0.1.6, =0.2.0, =1.3.2, =1.3.3 - django-autoconfig =0.8.0 and more Source cves: CVE-2019-6975 Source advisory: OSV:PYSEC-2019-18...

7.5CVSS6.7AI score0.05399EPSS
Exploits0
Rows per page
Query Builder