Oval Definition:	oval:com.ubuntu.precise:def:20169014000
Revision Date: 2016-12-09 Version: 1 Title: CVE-2016-9014 on Ubuntu 12.04 LTS (precise) - medium. Description: Django before 1.8.x before 1.8.16, 1.9.x before 1.9.11, and 1.10.x before 1.10.3, when settings.DEBUG is True, allow remote attackers to conduct DNS rebinding attacks by leveraging failure to validate the HTTP Host header against settings.ALLOWED_HOSTS. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-9014 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'python-django' package in precise was vulnerable but has been fixed (note: '1.3.1-4ubuntu1.22').
BACK