Lucene search
UbuntuUSN-6674-2HistoryMar 04, 2024 - 12:00 a.m.
Django vulnerability
2024-03-0400:00:00
ubuntu.com
11
ubuntu 18.04 lts
python-django
denial of service
Releases
- Ubuntu 18.04 ESM
Packages
- python-django - High-level Python web development framework
Details
USN-6674-1 fixed a vulnerability in Django. This update provides
the corresponding update for Ubuntu 18.04 LTS.
Original advisory details:
Seokchan Yoon discovered that the Django Truncator function incorrectly
handled very long HTML input. A remote attacker could possibly use this
issue to cause Django to consume resources, leading to a denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 18.04 | noarch | python-django | < 1:1.11.11-1ubuntu1.21+esm4 | UNKNOWN |
| Ubuntu | 18.04 | noarch | python-django | < 1:1.11.11-1ubuntu1.21 | UNKNOWN |
| Ubuntu | 18.04 | noarch | python-django-common | < 1:1.11.11-1ubuntu1.21 | UNKNOWN |
| Ubuntu | 18.04 | noarch | python-django-doc | < 1:1.11.11-1ubuntu1.21 | UNKNOWN |
| Ubuntu | 18.04 | noarch | python3-django | < 1:1.11.11-1ubuntu1.21 | UNKNOWN |
| Ubuntu | 18.04 | noarch | python3-django | < 1:1.11.11-1ubuntu1.21+esm4 | UNKNOWN |
References
Related
ubuntu
ubuntu
Django vulnerability
2024-03-04 00:00:00
nessus
nessus
Ubuntu 20.04 LTS / 22.04 LTS / 23.10 : Django vulnerability (USN-6674-1)
2024-03-05 00:00:00
FreeBSD : Django -- multiple vulnerabilities (0ef3398e-da21-11ee-b23a-080027a5b8e9)
2024-03-05 00:00:00
openSUSE 15 Security Update : python-Django (SUSE-SU-2024:0902-1)
2024-03-15 00:00:00
osv
osv
python-django vulnerability
2024-03-04 16:14:41
python-django vulnerability
2024-03-04 15:04:24
Regular expression denial-of-service in Django
2024-03-15 21:30:43
freebsd
freebsd
Django -- multiple vulnerabilities
2024-02-25 00:00:00
openvas
openvas
openSUSE: Security Advisory for python (openSUSE-SU-2024:0080-1)
2024-03-25 00:00:00
Mageia: Security Advisory (MGASA-2024-0075)
2024-04-05 00:00:00
Ubuntu: Security Advisory (USN-6674-1)
2024-03-05 00:00:00
cgr
cgr
CVE-2024-27351 vulnerabilities
2024-05-19 03:07:16
ibm
ibm
wolfi
wolfi
CVE-2024-27351 vulnerabilities
2024-06-28 09:08:32
redhatcve
redhatcve
CVE-2024-27351
2024-03-04 09:32:01
mageia
mageia
Updated python-django package fixes a security vulnerability
2024-03-20 06:35:18
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2024-03-22 04:01:57
fedora
fedora
[SECURITY] Fedora 39 Update: python-django-4.2.11-2.fc39
2024-04-18 01:12:12
[SECURITY] Fedora 40 Update: python-django-4.2.11-2.fc40
2024-04-13 03:41:27
[SECURITY] Fedora 38 Update: python-django3-3.2.25-2.fc38
2024-04-20 02:14:46
ubuntucve
ubuntucve
CVE-2024-27351
2024-03-04 00:00:00
debiancve
debiancve
CVE-2024-27351
2024-03-15 20:15:09
alpinelinux
alpinelinux
CVE-2024-27351
2024-03-15 20:15:09
nvd
nvd
CVE-2024-27351
2024-03-15 20:15:09
cve
cve
CVE-2024-27351
2024-03-15 20:15:09
cvelist
cvelist
CVE-2024-27351
2024-03-15 00:00:00
github
github
Regular expression denial-of-service in Django
2024-03-15 21:30:43
hackerone
hackerone
redhat
redhat