Security update for python-Django (important)

openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2023:0005-1 Rating: important References: 1185713 1186608 1186611 1193240 1194115 1194116 1194117 1195086 1195088 1198297 1198398 1198399 1201923 1203793 Cross-References: CVE-2021-32052 CVE-2021-33203...

DLA-3164-1 python-django - security update

Bulletin has no description...

DLA-2982-1 python-django - security update

Bulletin has no description...

SUSE-SU-2022:0286-1 Security update for python-Django

This update for python-Django fixes the following issues: - CVE-2022-22818: Fixed possible XSS via % debug % template tag bsc1195086 - CVE-2022-23833: Fixed denial-of-service possibility in file uploads. bsc1195088 A regression in the fix for CVE-2021-45452 was fixed bsc1194116...

SUSE-SU-2022:0285-1 Security update for python-Django1

This update for python-Django1 fixes the following issues: - CVE-2022-22818: Fixed possible XSS via % debug % template tag bsc1195086 - CVE-2022-23833: Fixed denial-of-service possibility in file uploads. bsc1195088...

DSA-4629-1 python-django - security update

Bulletin has no description...

SUSE-SU-2019:2257-1 Security update for python-Django

This update for python-Django to version 1.11.23 fixes the following issues: - CVE-2019-14232: Fixed a denial of service in 'django.utils.text.Truncator' bsc1142880. - CVE-2019-14233: Fixed a denial of service in striptags bsc1142882. - CVE-2019-14234: Fixed an SQL injection in key and index...

OPENSUSE-SU-2019:1872-1 Security update for python-Django

This update for python-Django fixes the following issues: Security issues fixed: - CVE-2019-11358: Fixed prototype pollution. - CVE-2019-12308: Fixed XSS in AdminURLFieldWidget bsc1136468 - CVE-2019-12781: Fixed incorrect HTTP detection with reverse-proxy connecting via HTTPS bsc1139945. -...

OPENSUSE-SU-2019:1839-1 Security update for python-Django

This update for python-Django fixes the following issues: Security issues fixed: - CVE-2019-11358: Fixed prototype pollution. - CVE-2019-12308: Fixed XSS in AdminURLFieldWidget bsc1136468 - CVE-2019-12781: Fixed incorrect HTTP detection with reverse-proxy connecting via HTTPS bsc1139945. -...

DLA-1842-1 python-django - security update

Bulletin has no description...

MGASA-2019-0086 Updated python-django packages fix security vulnerability

If django.utils.numberformat.format -- used by contrib.admin as well as the floatformat, filesizeformat, and intcomma templates filters -- received a Decimal with a large number of digits or a large exponent, it could lead to significant memory usage due to a call to ':f'.format CVE-2019-6975...

MGASA-2019-0035 Updated python-django packages fix security vulnerability

An upstream patch has been backported to fix a security vulnerability in python-django. CVE-2019-3498: Content spoofing possibility in the default 404 page An attacker could craft a malicious URL that could make spoofed content appear on the default page generated by the...

SUSE-SU-2018:3549-1 Security update for python-Django

This update for python-Django fixes the following issues: - CVE-2018-14574: Prevent open redirect in django.middleware.common.CommonMiddleware bsc1102680...

SUSE-SU-2018:1830-1 Security update for python-Django

This update for python-Django fixes the following security issues: - CVE-2016-2512: The utils.http.issafeurl function allowed remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting XSS attacks via a URL containing basic...

SUSE-SU-2018:1828-1 Security update for python-Django

This update for python-Django fixes the following security issues: - CVE-2016-2512: The utils.http.issafeurl function allowed remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting XSS attacks via a URL containing basic...

SUSE-SU-2018:1102-1 Security update for python-Django

This update for python-Django fixes the following issues: Security issues fixed: - CVE-2018-7537: Fixed catastrophic backtracking in django.utils.text.Truncator. bsc1083305 - CVE-2018-7536: Fixed catastrophic backtracking in urlize and urlizetrunc template filters. bsc1083304 - CVE-2017-12794:...

SUSE-SU-2018:0973-1 Security update for python-Django

This update for python-Django fixes the following issues: Security issues fixed: - CVE-2018-7537: Fixed catastrophic backtracking in django.utils.text.Truncator. bsc1083305 - CVE-2018-7536: Fixed catastrophic backtracking in urlize and urlizetrunc template filters. bsc1083304 - CVE-2017-12794:...

DSA-4161-1 python-django - security update

Bulletin has no description...

OPENSUSE-SU-2018:0651-1 Security update for python-Django

This update for python-Django fixes the following issues: Update to 1.11.11 Fixes CVE-2018-7536, CVE-2018-7537...

Moderate: Red Hat Security Advisory: python-django security update

An update for python-django is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...