72 matches found
SUSE-SU-2025:1041-1 Security update for python3
This update for python3 fixes the following issues: - CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307...
RockyLinux 9 : python3.9:3.9.21 (RLSA-2024:10983)
The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:10983 advisory. python: Virtual environment venv activation scripts don't quote paths CVE-2024-9287 python: Improper validation of IPv6 and IPvFuture addresses...
RLSA-2024:10983 Moderate: python3.9:3.9.21 security update
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...
python3.9:3.9.21 security update
An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming language...
SUSE SLES12: libpython2_7-1_0 / libpython2_7-1_0-32bit / python / python-32bit / etc (SUSE-SU-2025:0869-1)
The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0869-1 advisory. - CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307. Tenable has extracted the preceding description block directly...
Security update for python
This update for python fixes the following issues: CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...
SUSE-SU-2025:0868-1 Security update for python3
This update for python3 fixes the following issues: - CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307...
Security update for python
This update for python fixes the following issues: CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...
SUSE-SU-2025:0861-1 Security update for python
This update for python fixes the following issues: - CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307...
BIT-DJANGO-2024-56374
An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack of upper-bound limit enforcement in strings passed when performing IPv6 validation could lead to a potential denial-of-service attack. The undocumented and private functions cleanipv6address and...
[BSA-121] Security Update for python-django
Colin Watson uploaded new packages for python-django which fixed the following security problems: CVE-2024-45230 Potential denial-of-service vulnerability in django.utils.html.urlize. urlize and urlizetrunc were subject to a potential denial-of-service attack via very large inputs with a specific...
Python Library Django 4.2.x < 4.2.18 / 5.0.x < 5.0.11 / 5.1.x < 5.1.5 DoS
The detected version of the Django Python package, Django, is 4.2.x prior to 4.2.18, 5.0.x prior to 5.0.11 or 5.1.x prior to 5.1.5. It is, therefore, affected by a denial of service vulnerability as disclosed in Django's January 14th 2025 security advisory. A lack of upper bound limit enforcement...
django: potential denial-of-service vulnerability in IPv6 validation
A flaw was found in the Django framework. Lack of upper bound limit enforcement in strings passed when performing IPv6 validation could lead to a potential denial of service attack. The undocumented and private functions cleanipv6address and isvalidipv6address were vulnerable, as was the...
OESA-2025-1069 python-django security update
A high-level Python Web framework that encourages rapid development and clean, pragmatic design. Security Fixes: An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack of upper-bound limit enforcement in strings passed when performing IPv6 validation...
[SECURITY] [DLA 4030-1] python-django security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4030-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb January 23, 2025 https://wiki.debian.org/LTS -...
Denial Of Service (DoS)
Django is vulnerable to a Denial Of Service DoS. The vulnerability is due to the lack of upper-bound limit enforcement in strings during IPv6 validation, which affects the cleanipv6address and isvalidipv6address functions, as well as the django.forms.GenericIPAddressField form field, allows an...
SUSE SLES15 / openSUSE 15 Security Update : python-Django (SUSE-SU-2025:0149-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:0149-1 advisory. - CVE-2024-56374: Fixed lack of upper bound limit enforcement in strings when performing IPv6 validation that could lead to denial of...
Security update for python-Django
This update for python-Django fixes the following issues: CVE-2024-56374: Fixed lack of upper bound limit enforcement in strings when performing IPv6 validation that could lead to denial of service bsc1235856 Patch Instructions: To install this SUSE update use the SUSE recommended installation...
SUSE-SU-2025:0149-1 Security update for python-Django
This update for python-Django fixes the following issues: - CVE-2024-56374: Fixed lack of upper bound limit enforcement in strings when performing IPv6 validation that could lead to denial of service bsc1235856...
Django 4.x < 4.2.18, 5.0.x < 5.0.11, 5.1.x < 5.1.5 DoS Vulnerability - Linux
Django is prone to a denial of service DoS vulnerability in IPv6 validation. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...