Debian: Security Advisory (DLA-649-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : python-Django (openSUSE-SU-2023:0062-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2023:0062-1 advisory. - An issue was discovered in the Multipart Request Parser in Django 3.2 before 3.2.18, 4.0 before 4.0.10, and 4.1 before 4.1.7. Passing certain inputs...

OPENSUSE-SU-2023:0062-1 Security update for python-Django

python-Django was updated to fix a security issues: - CVE-2023-24580: prevent DOS in file uploads bsc1208082...

Security update for python-Django (moderate)

openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2023:0062-1 Rating: moderate References: Affected Products: openSUSE Backports SLE-15-SP4 An update that contains security fixes can now be installed. Description: python-Django was updated to fix a security...

openSUSE 15 Security Update : python-Django (openSUSE-SU-2023:0057-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0057-1 advisory. - In Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were subject to a potential denial of service attac...

OPENSUSE-SU-2023:0057-1 Security update for python-Django

This update for python-Django fixes the following issues: - CVE-2023-23969: Fixed potential denial-of-service via Accept-Language headers boo1207565 - CVE-2022-41323: Fixed potential denial-of-service vulnerability in internationalized URLs boo1203793...

Debian: Security Advisory (DLA-3329-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for python-Django (moderate)

openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2023:0057-1 Rating: moderate References: 1203793 1207565 Cross-References: CVE-2022-41323 CVE-2023-23969 CVSS scores: CVE-2022-41323 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-23969 NVD :...

DLA-3329-1 python-django - security update

Bulletin has no description...

Debian dla-3329 : python-django - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3329 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3329-1 [email protected] https://www.debian.org/lts/security/...

CVE-2023-24580

A memory exhaustion flaw was found in the python-django package. This issue occurs when passing certain inputs, leading to a system crash and denial of service...

Ubuntu: Security Advisory (USN-5868-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2023-0026 Updated python-django packages fix security vulnerability

Internationalized URLs were subject to a potential denial of service attack via the locale parameter, which is treated as a regular expression. CVE-2022-41323 Potential denial-of-service via Accept-Language headers CVE-2023-23969...

Ubuntu: Security Advisory (USN-5837-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-3306-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-5837-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3306-1] python-django security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3306-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb February 01, 2023 https://wiki.debian.org/LTS -...

CVE-2023-23969

A flaw was found in python-django. The parsed values of the Accept-Language headers are cached in order to avoid repetitive parsing. This leads to a potential denial of service vector via excessive memory usage if large header values are sent...

adede (=4.1.0), alastria-auth (>=0.0.3 <=0.0.17) +229 more potentially affected by CVE-2023-23969 via django (>=4.1.0 <=4.1.5)

django PYPI version =4.1.0, =0.0.3, =4.1.12.0, =0.6.3, =1.0.0, =0.1.1, =1.10.0, =4.14.0, =0.0.3, =4.1.0, =38.0.0, =55.0.0 - channels-postgres =0.0.5 and more Source cves: CVE-2023-23969 Source advisory: OSV:GHSA-Q2JF-H9JM-M7P4...

USN-5837-2 python-django vulnerability

USN-5837-1 fixed a vulnerability in Django. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Nick Pope discovered that Django incorrectly handled certain Accept-Language headers. A remote attacker could possibly use this issue to cause Django to consu...