CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
EPSS
Percentile
90.0%
Updated python-django and python-django14 packages fix security vulnerabilities: These releases address an issue with reverse() generating external URLs (CVE-2014-0480); a denial of service involving file uploads (CVE-2014-0481); a potential session hijacking issue in the remote-user middleware (CVE-2014-0482); and a data leak in the administrative interface (CVE-2014-0483).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | python-django | < 1.4.14-1 | python-django-1.4.14-1.mga3 |
Mageia | 4 | noarch | python-django | < 1.5.9-1 | python-django-1.5.9-1.mga4 |
Mageia | 4 | noarch | python-django14 | < 1.4.14-1.3 | python-django14-1.4.14-1.3.mga4 |