Explore top 10 tips to secure your open-source projects now. Read More
×Django is a high-level Python Web framework that encourages rapid
development and a clean, pragmatic design. It focuses on automating as
much as possible and adhering to the DRY (Don't Repeat Yourself)
principle.
Update Information:
fix regression in 1.8.10 ---- update to 1.8.10, fixing CVE-2016-2512, CVE-2016-2513
[ 1 ] Bug #1311438 - CVE-2016-2513 python-django: User enumeration through timing difference on password hasher work factor upgrade
https://bugzilla.redhat.com/show_bug.cgi?id=1311438
[ 2 ] Bug #1311431 - CVE-2016-2512 python-django: Malicious redirect and possible XSS attack via user-supplied redirect URLs containing basic auth
https://bugzilla.redhat.com/show_bug.cgi?id=1311431
This update can be installed with the "yum" update program. Use su -c 'yum update python-django' at the command line. For more information, refer to "Managing Software with yum", available at .
Get the latest Linux and open source security news straight to your inbox.