Mageia: 2019-0040 Security Update For Django 404 Spoofing Threat
mageia
January 18, 2019
It was discovered that Django incorrectly handled the default 404 page
Summary
It was discovered that Django incorrectly handled the default 404 page.
A remote attacker could use this issue to spoof content using a
malicious URL (CVE-2019-3498).
References
- https://bugs.mageia.org/show_bug.cgi?id=24173
- https://www.djangoproject.com/weblog/2019/jan/04/security-releases/
- https://ubuntu.com/security/notices/USN-3851-1
- https://www.cve.org/CVERecord?id=CVE-2019-3498
Resolution
SRPMS
- 6/core/python-django16-1.6.11.6-1.1.mga6
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Publication date: 18 Jan 2019
URL: https://advisories.mageia.org/MGASA-2019-0040.html
Type: security
CVE: CVE-2019-3498
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!