Oval Definition:oval:org.opensuse.security:def:20150219
Revision Date:2022-06-30Version:1
Title:CVE-2015-0219
Description:

Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.7.3 allows remote attackers to spoof WSGI headers by using an _ (underscore) character instead of a - (dash) character in an HTTP header, as demonstrated by an X-Auth_User header.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2015-0219
Mitre CVE-2015-0219
SUSE CVE-2015-0219
openSUSE-SU-2015:0643-1
openSUSE-SU-2015:1598-1
SUSE-SU-2015:0563-1
SUSE-SU-2015:1109-1
SUSE-SU-2015:1112-1
Platform(s):openSUSE 13.1
openSUSE 13.2
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE 13.1 is installed
  • AND python-django-1.5.12-0.2.11.1 is installed
  • Definition Synopsis
  • openSUSE 13.2 is installed
  • AND python-Django-1.6.11-3.4.1 is installed
  • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • python-bjoern-1.4.2-1.23 is installed
  • OR python36-bjoern-3.1.0-1.8 is installed
  • OR python38-bjoern-3.1.0-1.8 is installed
  • OR python39-bjoern-3.1.0-1.8 is installed
  • BACK