Vulnerability CVE-2019-6975

Vulnerability Name:

CVE-2019-6975 (CCN-156834)

Assigned:

2019-02-11

Published:

2019-02-11

Updated:

2020-08-24

Summary:

Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x before 2.1.6 allows Uncontrolled Memory Consumption via a malicious attacker-supplied value to the django.utils.numberformat.format() function.

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-770

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2019-6975

Source: BID
Type: Third Party Advisory, VDB Entry
106964

Source: MISC
Type: Patch, Vendor Advisory
https://docs.djangoproject.com/en/dev/releases/security/

Source: XF
Type: UNKNOWN
django-cve20196975-dos(156834)

Source: MISC
Type: Patch, Third Party Advisory
https://groups.google.com/forum/#!topic/django-announce/WTwEAprR0IQ

Source: FEDORA
Type: Third Party Advisory
FEDORA-2019-f528d75a69

Source: FEDORA
Type: Third Party Advisory
FEDORA-2019-5ad2149e99

Source: BUGTRAQ
Type: UNKNOWN
20190708 [SECURITY] [DSA 4476-1] python-django security update

Source: UBUNTU
Type: Third Party Advisory
USN-3890-1

Source: DEBIAN
Type: UNKNOWN
DSA-4476

Source: CCN
Type: Django Web site
Django security releases issued: 2.1.6, 2.0.11 and 1.11.19

Source: MISC
Type: Patch, Vendor Advisory
https://www.djangoproject.com/weblog/2019/feb/11/security-releases/

Source: MISC
Type: Mailing List, Patch, Third Party Advisory
https://www.openwall.com/lists/oss-security/2019/02/11/1

Vulnerable Configuration:

Configuration 1:

cpe:/a:djangoproject:django:*:*:*:*:*:*:*:* (Version >= 1.11.0 and < 1.11.19)

OR cpe:/a:djangoproject:django:*:*:*:*:*:*:*:* (Version >= 2.0.0 and < 2.0.11)

OR cpe:/a:djangoproject:django:*:*:*:*:*:*:*:* (Version >= 2.1.0 and < 2.1.6)

Configuration 2:

cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:fedoraproject:fedora:28:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:29:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20196975	V	CVE-2019-6975	2022-06-30
oval:org.opensuse.security:def:113248	P	python36-Django-3.2.7-2.3 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:59617	P	Security update for libvirt (Important)	2022-01-10
oval:org.opensuse.security:def:58040	P	Security update for samba (Important)	2021-11-19
oval:org.opensuse.security:def:60407	P	Security update for tomcat (Important)	2021-11-03
oval:org.opensuse.security:def:59556	P	Security update for transfig (Important)	2021-10-29
oval:org.opensuse.security:def:106660	P	python36-Django-3.2.7-2.3 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:60367	P	Security update for MozillaFirefox (Important)	2021-09-22
oval:org.opensuse.security:def:61612	P	openvpn-2.4.3-5.3.19 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61588	P	libvmtools-devel-10.3.10-1.10 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61669	P	ucode-intel-20190507-1.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63235	P	rsyslog-module-gssapi-8.33.1-3.9.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61589	P	libvorbis-devel-1.3.6-4.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63233	P	rarpd-s20161105-6.10 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61670	P	unixODBC-2.3.6-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:59800	P	Security update for ghostscript (Critical)	2021-09-21
oval:org.opensuse.security:def:58002	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:63132	P	terraform-0.13.4-6.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63423	P	graphviz-gnome-2.40.1-6.3.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63370	P	rmt-server-2.6.8-1.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63372	P	salt-api-3002.2-6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63507	P	php7-embed-7.4.6-3.17.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63473	P	gimp-2.10.12-7.25 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63322	P	davfs2-1.5.4-3.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63331	P	grub2-x86_64-xen-2.04-20.4 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62138	P	libada10-10.2.1+git583-1.3.4 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62248	P	libxml2-2-2.9.7-3.28.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62334	P	sysstat-12.0.2-3.27.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63001	P	ctags-5.8-1.27 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62054	P	cups-2.2.7-3.26.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63037	P	perl-YAML-LibYAML-0.69-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:57928	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:60271	P	Security update for libwebp (Critical)	2021-06-02
oval:org.opensuse.security:def:56998	P	Security update for graphviz (Critical)	2021-05-19
oval:org.opensuse.security:def:57443	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:59856	P	Security update for python-cryptography (Important)	2021-03-02
oval:org.opensuse.security:def:57171	P	Security update for perl-XML-Twig (Moderate)	2021-03-01
oval:org.opensuse.security:def:60449	P	Security update for wpa_supplicant (Important)	2021-02-15
oval:org.opensuse.security:def:58071	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:60487	P	Security update for the Linux Kernel (Moderate)	2021-01-12
oval:org.opensuse.security:def:60155	P	Security update for curl (Moderate)	2020-12-10
oval:org.opensuse.security:def:57836	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2020-12-07
oval:org.opensuse.security:def:62588	P	libvpx-devel-1.6.1-4.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63271	P	libct4-1.1.36-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63139	P	apache2-2.4.33-1.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61693	P	apache-commons-httpclient-3.1-9.65 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63405	P	apache-commons-fileupload-1.4-1.63 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62680	P	libmad-devel-0.15.1b-3.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61781	P	lftp-4.8.4-3.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62907	P	libtool-32bit-2.4.6-1.406 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62378	P	docker-runc-1.0.0rc8+gitr3917_3e425f80a8c9-6.35.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61864	P	libpng12-0-1.2.57-2.18 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62466	P	libquicktime-1.2.4cvs20150223-4.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:60864	P	Security update for ardana and crowbar (Important)	2020-12-01
oval:org.opensuse.security:def:58945	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:59671	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:59364	P	Security update for log4j (Important)	2020-12-01
oval:org.opensuse.security:def:56620	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:60835	P	Security update for python-cffi, python-cryptography (Moderate)	2020-12-01
oval:org.opensuse.security:def:59375	P	Security update for python-cffi, python-cryptography (Moderate)	2020-12-01
oval:org.opensuse.security:def:59184	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60526	P	python3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56597	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:59918	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60706	P	Security update for virglrenderer (Important)	2020-12-01
oval:org.opensuse.security:def:58967	P	Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:58145	P	Security update for python-Django (Moderate)	2020-12-01
oval:org.opensuse.security:def:56760	P	Security update for perl-XML-LibXML (Moderate)	2020-12-01
oval:org.opensuse.security:def:60525	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:57728	P	gnome-keyring on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60785	P	Security update for apache-commons-httpclient (Important)	2020-12-01
oval:org.opensuse.security:def:58944	P	Security update for librelp (Important)	2020-12-01
oval:org.opensuse.security:def:58121	P	Security update for dbus-1 (Important)	2020-12-01
oval:org.opensuse.security:def:59206	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:60604	P	Security update for ardana and crowbar (Important)	2020-12-01
oval:org.opensuse.security:def:56598	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:60107	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:57277	P	Security update for xorg-x11	2020-12-01
oval:org.opensuse.security:def:60744	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:59123	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:59183	P	Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60576	P	xorg-x11-libs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60622	P	Security update for python-SQLAlchemy (Important)	2020-12-01
oval:org.opensuse.security:def:80780	P	Security update for python-Django (Moderate)	2019-08-02
oval:org.opensuse.security:def:83870	P	Security update for ardana and crowbar (Important)	2019-07-17
oval:org.opensuse.security:def:84317	P	Security update for ardana and crowbar (Important)	2019-07-17
oval:org.opensuse.security:def:87978	P	Security update for python-Django1 (Moderate)	2019-05-10
oval:org.opensuse.security:def:88278	P	Security update for python-Django1 (Moderate)	2019-05-10
oval:com.ubuntu.bionic:def:20196975000	V	CVE-2019-6975 on Ubuntu 18.04 LTS (bionic) - medium.	2019-02-11
oval:com.ubuntu.cosmic:def:201969750000000	V	CVE-2019-6975 on Ubuntu 18.10 (cosmic) - medium.	2019-02-11
oval:com.ubuntu.cosmic:def:20196975000	V	CVE-2019-6975 on Ubuntu 18.10 (cosmic) - medium.	2019-02-11
oval:com.ubuntu.bionic:def:201969750000000	V	CVE-2019-6975 on Ubuntu 18.04 LTS (bionic) - medium.	2019-02-11
oval:com.ubuntu.trusty:def:20196975000	V	CVE-2019-6975 on Ubuntu 14.04 LTS (trusty) - medium.	2019-02-11
oval:com.ubuntu.xenial:def:201969750000000	V	CVE-2019-6975 on Ubuntu 16.04 LTS (xenial) - medium.	2019-02-11
oval:com.ubuntu.xenial:def:20196975000	V	CVE-2019-6975 on Ubuntu 16.04 LTS (xenial) - medium.	2019-02-11

BACK