Oval Definition:	oval:com.ubuntu.precise:def:20123444000
Revision Date: 2012-07-31 Version: 1 Title: CVE-2012-3444 on Ubuntu 12.04 LTS (precise) - medium. Description: The get_image_dimensions function in the image-handling functionality in Django before 1.3.2 and 1.4.x before 1.4.1 uses a constant chunk size in all attempts to determine dimensions, which allows remote attackers to cause a denial of service (process or thread consumption) via a large TIFF image. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-3444 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'python-django' package in precise was vulnerable but has been fixed (note: '1.3.1-4ubuntu1.2').
BACK