--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-8691
2015-05-22 00:28:51
--------------------------------------------------------------------------------

Name        : python-django
Product     : Fedora 22
Version     : 1.8.2
Release     : 1.fc22
URL         : http://www.djangoproject.com/
Summary     : A high-level Python Web framework
Description :
Django is a high-level Python Web framework that encourages rapid
development and a clean, pragmatic design. It focuses on automating as
much as possible and adhering to the DRY (Don't Repeat Yourself)
principle.

--------------------------------------------------------------------------------
Update Information:

fix CVE-2015-3982 - Fixed session flushing in the cached_db backend
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 20 2015 Matthias Runge  - 1.8.2-1
- fix CVE-2015-3982 - Fixed session flushing in the cached_db backend
  (rhbz#1223591)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1223591 - python-django-1.8.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1223591
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update python-django' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/

Fedora 22: python-django Security Update

May 30, 2015
fix CVE-2015-3982 - Fixed session flushing in the cached_db backend

Summary

Django is a high-level Python Web framework that encourages rapid

development and a clean, pragmatic design. It focuses on automating as

much as possible and adhering to the DRY (Don't Repeat Yourself)

principle.

Update Information:

fix CVE-2015-3982 - Fixed session flushing in the cached_db backend

Change Log

* Wed May 20 2015 Matthias Runge - 1.8.2-1 - fix CVE-2015-3982 - Fixed session flushing in the cached_db backend (rhbz#1223591)

References

[ 1 ] Bug #1223591 - python-django-1.8.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1223591

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update python-django' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : python-django
Product : Fedora 22
Version : 1.8.2
Release : 1.fc22
URL : http://www.djangoproject.com/
Summary : A high-level Python Web framework

Related News

11.Locks IsometricPattern Esm H320
2 - 3 min read
The Kinsing hacker group, or H2Miner, has been orchestrating illicit cryptocurrency mining campaigns since 2019 and poses a persistent security
32.Lock Code Circular Esm H320
2 - 3 min read
The Kimsuky APT group, reportedly linked to North Korea's Reconnaissance General Bureau (RGB), has been identified deploying a Linux version of its
4.Lock AbstractDigital Esm H320
2 - 3 min read
Recent research sheds light on the security vulnerabilities prevalent in Linux vendor kernels due to flawed engineering processes that backport
28.Lock Globe Esm H320
1 - 2 min read
The intersection of Linux and quantum computing has become increasingly apparent, emphasizing the importance of Linux-based operating systems in
6.EmailConnection Touch Esm H320
2 - 3 min read
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and
30.Lock Globe Motherboard Esm H320
1 - 2 min read
As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect
22.Lock ScreenEffect Esm H320
1 - 2 min read
EndeavorOS Gemini is a captivating and charming desktop operating system based on Arch Linux. The new release includes a kernel upgrade, 3D graphics
25.@Sign Hook Keyboard Esm H320
1 min read
Cyber risk is increasing for individuals and organizations, making flexible and robust solutions for identifying spam and malware increasingly

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved