Oval Definition:	oval:com.ubuntu.precise:def:20167401000
Revision Date: 2016-10-03 Version: 1 Title: CVE-2016-7401 on Ubuntu 12.04 LTS (precise) - medium. Description: The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.10, when used on a site with Google Analytics, allows remote attackers to bypass an intended CSRF protection mechanism by setting arbitrary cookies. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-7401 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'python-django' package in precise was vulnerable but has been fixed (note: '1.3.1-4ubuntu1.21').
BACK