OVAL Reference oval:org.opensuse.security:def:20153982

Oval Definition:

oval:org.opensuse.security:def:20153982

Revision Date:	2022-06-30	Version:	1
Title:	CVE-2015-3982
Description:	The session.flush function in the cached_db backend in Django 1.8.x before 1.8.2 does not properly flush the session, which allows remote attackers to hijack user sessions via an empty string in the session key.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2015-3982 Mitre CVE-2015-3982 SUSE CVE-2015-3982
Platform(s):	openSUSE Tumbleweed SUSE OpenStack Cloud 6	Product(s):
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND python-Django-1.8.9-1 is installed
Definition Synopsis
openSUSE Tumbleweed is installed AND Package Information python-Django-1.9.12-1.1 is installed OR python36-Django-3.2.7-2.3 is installed OR python38-Django-3.2.7-2.3 is installed OR python39-Django-3.2.7-2.3 is installed