Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Ubuntu 18.04 LTS USN-7501-2: Django denial of service issue

Calendar May 07, 2025 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service update instructions ubuntu resource consumption django
Django could be made to crash if it received specially crafted network traffic. 
==========================================================================
Ubuntu Security Notice USN-7501-2
May 07, 2025

python-django vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

Django could be made to crash if it received specially crafted network
traffic.

Software Description:
- python-django: High-level Python web development framework

Details:

USN-7501-1 fixed a vulnerability in Django. This update provides
the corresponding update for Ubuntu 18.04 LTS.

Original advisory details:

 Elias Myllymäki discovered that Django incorrectly handled stripping large
 sequences of incomplete HTML tags. A remote attacker could possibly use
 this issue to cause Django to consume resources, leading to a denial of
 service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS
  python-django                   1:1.11.11-1ubuntu1.21+esm11
                                  Available with Ubuntu Pro
  python3-django                  1:1.11.11-1ubuntu1.21+esm11
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-7501-2
  https://ubuntu.com/security/notices/USN-7501-1
  CVE-2025-32873

Ubuntu 18.04 LTS USN-7501-2: Django denial of service issue

ubuntu
Calendar Grey May 7, 2025
Dist Ubuntu Esm H88
Upgrade Ubuntu 18.04 LTS to address Django crash exploit from malicious requests. Enhance your system's security now!
Django could be made to crash if it received specially crafted network traffic.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS Summary: Django could be made to crash if it received specially crafted network traffic. Software Description: - python-django: High-level Python web development framework Details: USN-7501-1 fixed a vulnerability in Django. This update provides the corresponding update for Ubuntu 18.04 LTS. Original advisory details: Elias Myllymäki discovered that Django incorrectly handled stripping large sequences of incomplete HTML tags. A remote attacker could possibly use this issue to cause Django to consume resources, leading to a denial of service.

Topics%20covered

Topics Covered

security advisory denial of service update instructions ubuntu resource consumption django

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS python-django 1:1.11.11-1ubuntu1.21+esm11 Available with Ubuntu Pro python3-django 1:1.11.11-1ubuntu1.21+esm11 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7501-2

https://ubuntu.com/security/notices/USN-7501-1

CVE-2025-32873

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7501-2

Topics%20covered

Topics Covered

security advisory denial of service update instructions ubuntu resource consumption django

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here