drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in Django
| Name: |
Denial of Service in Django |
|
| ID: |
USN-7205-1 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, Ubuntu 24.10 |
|
| Datum: |
Mi, 15. Januar 2025, 06:39 |
|
| Referenzen: |
https://www.cve.org/CVERecord?id=CVE-2024-56374 |
|
| Applikationen: |
Django |
|
Originalnachricht |
--===============2425103575186605570==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="UugvWAfsgieZRqgk"
Content-Disposition: inline
--UugvWAfsgieZRqgk
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
==========================================================================
Ubuntu Security Notice USN-7205-1
January 14, 2025
python-django vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 24.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
Django could be made to cause a denial of service if it received a
specially crafted IPv6 string.
Software Description:
- python-django: High-level Python web development framework
Details:
It was discovered that Django incorrectly handled certain IPv6
strings. An attacker could possibly use this issue to cause a
denial of service.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.10
python3-django 3:4.2.15-1ubuntu1.2
Ubuntu 24.04 LTS
python3-django 3:4.2.11-1ubuntu1.5
Ubuntu 22.04 LTS
python3-django 2:3.2.12-2ubuntu1.16
Ubuntu 20.04 LTS
python3-django 2:2.2.12-1ubuntu0.27
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7205-1
CVE-2024-56374
Package Information:
https://launchpad.net/ubuntu/+source/python-django/3:4.2.15-1ubuntu1.2
https://launchpad.net/ubuntu/+source/python-django/3:4.2.11-1ubuntu1.5
https://launchpad.net/ubuntu/+source/python-django/2:3.2.12-2ubuntu1.16
https://launchpad.net/ubuntu/+source/python-django/2:2.2.12-1ubuntu0.27
--UugvWAfsgieZRqgk
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----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=iUxf
-----END PGP SIGNATURE-----
--UugvWAfsgieZRqgk--
--===============2425103575186605570==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
--===============2425103575186605570==--
|
|
|
|
