Oval Definition:oval:org.cisecurity:def:66
Revision Date:2016-02-08Version:2
Title:DSA-3204-1 -- python-django -- security update
Description:Daniel Chatfield discovered that python-django, a high-level Python web development framework, incorrectly handled user-supplied redirect URLs. A remote attacker could use this flaw to perform a cross-site scripting attack.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2015-2317
DSA-3204-1
Platform(s):Debian GNU/kFreeBSD 7.0
Debian GNU/Linux 7.0
Product(s):python-django
Definition Synopsis
  • Debian 7 is installed
  • AND GNU/Linux or GNU/kFreeBSD kernel
  • Debian GNU/Linux is installed
  • OR Debian GNU/kFreeBSD is installed
  • AND python-django is earlier than 0:1.4.5-1+deb7u11
    • BACK