23 matches found
SUSE-SU-2024:0874-1 Security update for python-Django1
This update for python-Django1 fixes the following issues: - CVE-2024-24680: Fixed a denial-of-service in intcomma template filter bsc1219683. - CVE-2024-27351: Fixed potential regular expression denial-of-service in django.utils.text.Truncator.words bsc1220358...
openSUSE 15 Security Update : python-Django1 (openSUSE-SU-2024:0080-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2024:0080-1 advisory. - Django reports: CVE-2024-27351: Potential regular expression denial-of-service in django.utils.text.Truncator.words. CVE-2024-27351 Note that Nessus ha...
Security update for python-Django1 (important)
openSUSE Security Update: Security update for python-Django1 Announcement ID: openSUSE-SU-2024:0080-1 Rating: important References: 1220358 Cross-References: CVE-2024-27351 CVSS scores: CVE-2024-27351 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports...
openSUSE: Security Advisory for python (openSUSE-SU-2023:0390-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : python-Django1 (openSUSE-SU-2023:0390-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2023:0390-1 advisory. - In Django 3.2 before 3.2.22, 4.1 before 4.1.12, and 4.2 before 4.2.6, the django.utils.text.Truncator chars and words methods when used with html=True...
OPENSUSE-SU-2023:0389-1 Security update for python-Django1
This update for python-Django1 fixes the following issues: - CVE-2023-43665: Fixed Denial-of-service vulnerability in django.utils.text.Truncator boo1215978...
Security update for python-Django1 (moderate)
openSUSE Security Update: Security update for python-Django1 Announcement ID: openSUSE-SU-2023:0390-1 Rating: moderate References: 1215978 Cross-References: CVE-2023-43665 CVSS scores: CVE-2023-43665 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-43665 SUSE: 5.3...
Security update for python-Django1 (moderate)
openSUSE Security Update: Security update for python-Django1 Announcement ID: openSUSE-SU-2023:0389-1 Rating: moderate References: 1215978 Cross-References: CVE-2023-43665 CVSS scores: CVE-2023-43665 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-43665 SUSE: 5.3...
SUSE-SU-2023:4426-1 Security update for python-Django1
This update for python-Django1 fixes the following issues: - CVE-2023-43665: Fixed a denial of service in django.utils.text.Truncator bsc1215978...
SUSE-SU-2023:3202-1 Security update for python-Django1
This update for python-Django1 fixes the following issues: - CVE-2023-36053: Fixed regular expression denial of service vulnerability in EmailValidator/URLValidator bsc1212742...
openSUSE 15 Security Update : python-Django1 (openSUSE-SU-2023:0176-1)
The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2023:0176-1 advisory. - In Django 3.2 before 3.2.20, 4 before 4.1.10, and 4.2 before 4.2.3, EmailValidator and URLValidator are subject to a potential ReDoS regular expression...
OPENSUSE-SU-2023:0176-1 Security update for python-Django1
This update of python-Django1 fixes the following issue: - CVE-2023-36053: Fixed potential regular expression denial of service vulnerability in EmailValidator/URLValidator boo1212742...
Security update for python-Django1 (important)
openSUSE Security Update: Security update for python-Django1 Announcement ID: openSUSE-SU-2023:0177-1 Rating: important References: 1212742 Cross-References: CVE-2023-36053 CVSS scores: CVE-2023-36053 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-36053 SUSE: 5.9...
Security update for python-Django1 (important)
openSUSE Security Update: Security update for python-Django1 Announcement ID: openSUSE-SU-2023:0176-1 Rating: important References: 1212742 Cross-References: CVE-2023-36053 CVSS scores: CVE-2023-36053 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-36053 SUSE: 5.9...
SUSE-SU-2023:2080-1 Security update for python-Django1
This update for python-Django1 fixes the following issues: - CVE-2023-24580: Fixed potential DoS in file uploads bsc1208082...
SUSE-SU-2022:3339-1 Security update for ardana-ansible, ardana-cobbler, ardana-tempest, grafana, openstack-heat-templates, openstack-horizon-plugin-gbp-ui, openstack-neutron-gbp, openstack-nova, python-Django1, rabbitmq-server, rubygem-puma
This update for ardana-ansible, ardana-cobbler, ardana-tempest, grafana, openstack-heat-templates, openstack-horizon-plugin-gbp-ui, openstack-neutron-gbp, openstack-nova, python-Django1, rabbitmq-server, rubygem-puma fixes the following issues: Security fixes included in this update:...
SUSE-SU-2019:2335-1 Security update for python-Django1
This update for python-Django1 to version 1.11.23 fixes the following issues: - CVE-2019-14232: Fixed a denial of service in 'django.utils.text.Truncator' bsc1142880. - CVE-2019-14233: Fixed a denial of service in striptags bsc1142882. - CVE-2019-14234: Fixed an SQL injection in key and index...
SUSE-SU-2019:2034-1 Security update for python-Django1
This update for python-Django1 fixes the following issues: - CVE-2019-12308: Fixed an improper validatation of the clickable 'Current URL' link in AdminURLFieldWidget which could have allowed attackers to perform XSS attacks bsc1136468...
SUSE-SU-2019:1215-1 Security update for python-Django1
This update for python-Django1 fixes the following issue: Security issue fixed: - CVE-2019-6975: Fixed memory exhaustion in django.utils.numberformat.format bsc1124991...
openSUSE Security Update : python-Django1 (openSUSE-2019-608)
This update for python-Django1 to version 1.11.15 fixes the following issues : The following security vulnerability was fixed : - CVE-2018-14574: Fixed an open redirect possibility in CommonMiddleware boo1102680 The following other bugs were fixed : - Fixed WKBWriter.write and writehex for empty...