Lucene search
K

72 matches found

OSV
OSV
added 2025/03/27 3:8 p.m.8 views

SUSE-SU-2025:1041-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307...

6.3CVSS7.8AI score0.0067EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/19 12:0 a.m.15 views

RockyLinux 9 : python3.9:3.9.21 (RLSA-2024:10983)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:10983 advisory. python: Virtual environment venv activation scripts don't quote paths CVE-2024-9287 python: Improper validation of IPv6 and IPvFuture addresses...

7.8CVSS6.8AI score0.0067EPSS
Exploits0References5
OSV
OSV
added 2025/03/17 8:16 p.m.20 views

RLSA-2024:10983 Moderate: python3.9:3.9.21 security update

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fixes:...

7.8CVSS7.8AI score0.0067EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2025/03/17 8:16 p.m.14 views

python3.9:3.9.21 security update

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming language...

7.8CVSS7.8AI score0.0067EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/15 12:0 a.m.6 views

SUSE SLES12: libpython2_7-1_0 / libpython2_7-1_0-32bit / python / python-32bit / etc (SUSE-SU-2025:0869-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:0869-1 advisory. - CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307. Tenable has extracted the preceding description block directly...

6.3CVSS6.8AI score0.0067EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/03/14 10:42 a.m.2 views

Security update for python

This update for python fixes the following issues: CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...

6.3CVSS7.3AI score0.0067EPSS
Exploits0References4
OSV
OSV
added 2025/03/14 10:42 a.m.5 views

SUSE-SU-2025:0868-1 Security update for python3

This update for python3 fixes the following issues: - CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307...

6.3CVSS4.8AI score0.0067EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/03/14 8:45 a.m.3 views

Security update for python

This update for python fixes the following issues: CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...

6.3CVSS6.6AI score0.0067EPSS
Exploits0References4
OSV
OSV
added 2025/03/14 8:45 a.m.12 views

SUSE-SU-2025:0861-1 Security update for python

This update for python fixes the following issues: - CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307...

6.3CVSS4.8AI score0.0067EPSS
Exploits0References3
OSV
OSV
added 2025/03/10 8:13 a.m.13 views

BIT-DJANGO-2024-56374

An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack of upper-bound limit enforcement in strings passed when performing IPv6 validation could lead to a potential denial-of-service attack. The undocumented and private functions cleanipv6address and...

7.5CVSS7AI score0.01854EPSS
Exploits0References6
Debian
Debian
added 2025/02/05 10:36 a.m.72 views

[BSA-121] Security Update for python-django

Colin Watson uploaded new packages for python-django which fixed the following security problems: CVE-2024-45230 Potential denial-of-service vulnerability in django.utils.html.urlize. urlize and urlizetrunc were subject to a potential denial-of-service attack via very large inputs with a specific...

9.8CVSS6.7AI score0.25327EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/02/04 12:0 a.m.8 views

Python Library Django 4.2.x < 4.2.18 / 5.0.x < 5.0.11 / 5.1.x < 5.1.5 DoS

The detected version of the Django Python package, Django, is 4.2.x prior to 4.2.18, 5.0.x prior to 5.0.11 or 5.1.x prior to 5.1.5. It is, therefore, affected by a denial of service vulnerability as disclosed in Django's January 14th 2025 security advisory. A lack of upper bound limit enforcement...

7.5CVSS6.5AI score0.01854EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/01/28 7:20 p.m.3 views

django: potential denial-of-service vulnerability in IPv6 validation

A flaw was found in the Django framework. Lack of upper bound limit enforcement in strings passed when performing IPv6 validation could lead to a potential denial of service attack. The undocumented and private functions cleanipv6address and isvalidipv6address were vulnerable, as was the...

7.5CVSS7.1AI score0.01854EPSS
Exploits0References8
OSV
OSV
added 2025/01/24 1:48 a.m.3 views

OESA-2025-1069 python-django security update

A high-level Python Web framework that encourages rapid development and clean, pragmatic design. Security Fixes: An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack of upper-bound limit enforcement in strings passed when performing IPv6 validation...

7.5CVSS6.9AI score0.01854EPSS
Exploits0References2
Debian
Debian
added 2025/01/23 3:16 p.m.7 views

[SECURITY] [DLA 4030-1] python-django security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4030-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb January 23, 2025 https://wiki.debian.org/LTS -...

7.5CVSS5.6AI score0.01854EPSS
Exploits0
Veracode
Veracode
added 2025/01/17 6:38 a.m.4 views

Denial Of Service (DoS)

Django is vulnerable to a Denial Of Service DoS. The vulnerability is due to the lack of upper-bound limit enforcement in strings during IPv6 validation, which affects the cleanipv6address and isvalidipv6address functions, as well as the django.forms.GenericIPAddressField form field, allows an...

7.5CVSS5.5AI score0.01854EPSS
Exploits0References12Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/01/17 12:0 a.m.9 views

SUSE SLES15 / openSUSE 15 Security Update : python-Django (SUSE-SU-2025:0149-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:0149-1 advisory. - CVE-2024-56374: Fixed lack of upper bound limit enforcement in strings when performing IPv6 validation that could lead to denial of...

7.5CVSS6.6AI score0.01854EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/01/16 5:3 p.m.3 views

Security update for python-Django

This update for python-Django fixes the following issues: CVE-2024-56374: Fixed lack of upper bound limit enforcement in strings when performing IPv6 validation that could lead to denial of service bsc1235856 Patch Instructions: To install this SUSE update use the SUSE recommended installation...

8.2CVSS6.7AI score0.01854EPSS
Exploits0References4
OSV
OSV
added 2025/01/16 5:3 p.m.13 views

SUSE-SU-2025:0149-1 Security update for python-Django

This update for python-Django fixes the following issues: - CVE-2024-56374: Fixed lack of upper bound limit enforcement in strings when performing IPv6 validation that could lead to denial of service bsc1235856...

7.5CVSS5.6AI score0.01854EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/01/16 12:0 a.m.5 views

Django 4.x < 4.2.18, 5.0.x < 5.0.11, 5.1.x < 5.1.5 DoS Vulnerability - Linux

Django is prone to a denial of service DoS vulnerability in IPv6 validation. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS6.5AI score0.01854EPSS
Exploits0References1
Rows per page
Query Builder