Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Debian: DLA-3500-1 Moderate: Python-Django DoS Security Fix

debian lts
Calendar Grey July 19, 2023
Dist Debian Esm H88
Enhance the security of python-django to address denial of service vulnerabilities as noted in Debian LTS: DLA-3500-1. Ensure your systems remain protected with the most recent patches.
It was discovered that there was a potential denial of service attack in Django, the popular Python-based web development framework
Topics%20covered

Topics Covered

security advisory denial of service software update debian python

Summary

EmailValidator and URLValidator were subject to potential regular
expression denial of service attack via a very large number of domain
name labels of emails and URLs.

For Debian 10 buster, this problem has been fixed in version
1:1.11.29-1+deb10u9.

We recommend that you upgrade your python-django packages.

For the detailed security status of python-django please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/python-django

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



Package: python-django
Version: 1:1.11.29-1+deb10u9
CVE ID: CVE-2023-36053
Debian Bug: 1040225

Topics%20covered

Topics Covered

security advisory denial of service software update debian python

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here