Ubuntu 5653-1: Django vulnerability | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
==========================================================================
Ubuntu Security Notice USN-5653-1
October 04, 2022

python-django vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS

Summary:

Django could be made to crash if it received specially crafted network
traffic.

Software Description:
- python-django: High-level Python web development framework

Details:

Benjamin Balder Bach discovered that Django incorrectly handled certain
internationalized URLs. A remote attacker could possibly use this issue to
cause Django to crash, resulting in a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS:
  python3-django                  2:3.2.12-2ubuntu1.3

Ubuntu 20.04 LTS:
  python3-django                  2:2.2.12-1ubuntu0.14

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-5653-1
  CVE-2022-41323

Package Information:
  https://launchpad.net/ubuntu/+source/python-django/2:3.2.12-2ubuntu1.3
  https://launchpad.net/ubuntu/+source/python-django/2:2.2.12-1ubuntu0.14

Ubuntu 5653-1: Django vulnerability

October 4, 2022
Django could be made to crash if it received specially crafted network traffic.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: Django could be made to crash if it received specially crafted network traffic. Software Description: - python-django: High-level Python web development framework Details: Benjamin Balder Bach discovered that Django incorrectly handled certain internationalized URLs. A remote attacker could possibly use this issue to cause Django to crash, resulting in a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS: python3-django 2:3.2.12-2ubuntu1.3 Ubuntu 20.04 LTS: python3-django 2:2.2.12-1ubuntu0.14 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5653-1

CVE-2022-41323

Severity
Ubuntu Security Notice USN-5653-1

Package Information

https://launchpad.net/ubuntu/+source/python-django/2:3.2.12-2ubuntu1.3 https://launchpad.net/ubuntu/+source/python-django/2:2.2.12-1ubuntu0.14

Related News

Attackers Deploy Sophisticated Linux Implant on Fortinet Network Security Devices

10 Essential Linux Tools for Network and Security Pros

Delving into Container Security

The 10 Best Free Linux Firewall Tools

News

Advisories

HOWTOs

Features

Verifying Linux Server Security: What Every Admin Needs to Know
What Linux, Windows & Mac OS Users Need to Know About VPNs
Complete Guide to Vulnerability Basics
How To Get Live Updates on Critical Linux Security Advisories
Best Linux Backup Solutions to Prevent Data Loss in A Ransomware Attack

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy