Lucene search
UbuntuUSN-6674-1HistoryMar 04, 2024 - 12:00 a.m.
Django vulnerability
2024-03-0400:00:00
ubuntu.com
14
ubuntu
python-django
truncator function
denial of service
Releases
- Ubuntu 23.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Packages
- python-django - High-level Python web development framework
Details
Seokchan Yoon discovered that the Django Truncator function incorrectly
handled very long HTML input. A remote attacker could possibly use this
issue to cause Django to consume resources, leading to a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.10 | noarch | python3-django | < 3:4.2.4-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 23.10 | noarch | python-django-doc | < 3:4.2.4-1ubuntu2.2 | UNKNOWN |
| Ubuntu | 22.04 | noarch | python3-django | < 2:3.2.12-2ubuntu1.11 | UNKNOWN |
| Ubuntu | 22.04 | noarch | python-django-doc | < 2:3.2.12-2ubuntu1.11 | UNKNOWN |
| Ubuntu | 20.04 | noarch | python3-django | < 2:2.2.12-1ubuntu0.22 | UNKNOWN |
| Ubuntu | 20.04 | noarch | python-django-doc | < 2:2.2.12-1ubuntu0.22 | UNKNOWN |
References
Related
openvas
openvas
Ubuntu: Security Advisory (USN-6674-1)
2024-03-05 00:00:00
Mageia: Security Advisory (MGASA-2024-0075)
2024-04-05 00:00:00
openSUSE: Security Advisory for python (openSUSE-SU-2024:0080-1)
2024-03-25 00:00:00
ibm
ibm
wolfi
wolfi
CVE-2024-27351 vulnerabilities
2024-06-08 09:07:53
nessus
nessus
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : Django vulnerability (USN-6674-1)
2024-03-05 00:00:00
FreeBSD : Django -- multiple vulnerabilities (0ef3398e-da21-11ee-b23a-080027a5b8e9)
2024-03-05 00:00:00
openSUSE 15 Security Update : python-Django (SUSE-SU-2024:0902-1)
2024-03-15 00:00:00
osv
osv
python-django vulnerability
2024-03-04 15:04:24
python-django vulnerability
2024-03-04 16:14:41
Regular expression denial-of-service in Django
2024-03-15 21:30:43
freebsd
freebsd
Django -- multiple vulnerabilities
2024-02-25 00:00:00
cgr
cgr
CVE-2024-27351 vulnerabilities
2024-05-19 03:07:16
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2024-03-22 04:01:57
mageia
mageia
Updated python-django package fixes a security vulnerability
2024-03-20 06:35:18
redhatcve
redhatcve
CVE-2024-27351
2024-03-04 09:32:01
ubuntu
ubuntu
Django vulnerability
2024-03-04 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: python-django-4.2.11-2.fc39
2024-04-18 01:12:12
[SECURITY] Fedora 40 Update: python-django-4.2.11-2.fc40
2024-04-13 03:41:27
[SECURITY] Fedora 38 Update: python-django3-3.2.25-2.fc38
2024-04-20 02:14:46
alpinelinux
alpinelinux
CVE-2024-27351
2024-03-15 20:15:09
nvd
nvd
CVE-2024-27351
2024-03-15 20:15:09
ubuntucve
ubuntucve
CVE-2024-27351
2024-03-04 00:00:00
debiancve
debiancve
CVE-2024-27351
2024-03-15 20:15:09
cve
cve
CVE-2024-27351
2024-03-15 20:15:09
github
github
Regular expression denial-of-service in Django
2024-03-15 21:30:43
cvelist
cvelist
CVE-2024-27351
2024-03-15 00:00:00
hackerone
hackerone
redhat
redhat