Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2014-0366)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2014.0366

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2014-0366)

Resumen: The remote host is missing an update for the 'python-django, python-django14' package(s) announced via the MGASA-2014-0366 advisory.

Descripción: Summary:
The remote host is missing an update for the 'python-django, python-django14' package(s) announced via the MGASA-2014-0366 advisory.

Vulnerability Insight:
Updated python-django and python-django14 packages fix security vulnerabilities:

These releases address an issue with reverse() generating external URLs
(CVE-2014-0480), a denial of service involving file uploads (CVE-2014-0481),
a potential session hijacking issue in the remote-user middleware
(CVE-2014-0482), and a data leak in the administrative interface
(CVE-2014-0483).

Affected Software/OS:
'python-django, python-django14' package(s) on Mageia 3, Mageia 4.

Solution:
Please install the updated package(s).

CVSS Score:
6.0

CVSS Vector:
AV:N/AC:M/Au:S/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-0480
BugTraq ID: 69425
http://www.securityfocus.com/bid/69425
Debian Security Information: DSA-3010 (Google Search)
http://www.debian.org/security/2014/dsa-3010
http://secunia.com/advisories/59782
http://secunia.com/advisories/61276
http://secunia.com/advisories/61281
SuSE Security Announcement: openSUSE-SU-2014:1132 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-0481
Common Vulnerability Exposure (CVE) ID: CVE-2014-0482
Common Vulnerability Exposure (CVE) ID: CVE-2014-0483

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2014.0366
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2014-0366)
Resumen:	The remote host is missing an update for the 'python-django, python-django14' package(s) announced via the MGASA-2014-0366 advisory.
Descripción:	Summary: The remote host is missing an update for the 'python-django, python-django14' package(s) announced via the MGASA-2014-0366 advisory. Vulnerability Insight: Updated python-django and python-django14 packages fix security vulnerabilities: These releases address an issue with reverse() generating external URLs (CVE-2014-0480), a denial of service involving file uploads (CVE-2014-0481), a potential session hijacking issue in the remote-user middleware (CVE-2014-0482), and a data leak in the administrative interface (CVE-2014-0483). Affected Software/OS: 'python-django, python-django14' package(s) on Mageia 3, Mageia 4. Solution: Please install the updated package(s). CVSS Score: 6.0 CVSS Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0480 BugTraq ID: 69425 http://www.securityfocus.com/bid/69425 Debian Security Information: DSA-3010 (Google Search) http://www.debian.org/security/2014/dsa-3010 http://secunia.com/advisories/59782 http://secunia.com/advisories/61276 http://secunia.com/advisories/61281 SuSE Security Announcement: openSUSE-SU-2014:1132 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html Common Vulnerability Exposure (CVE) ID: CVE-2014-0481 Common Vulnerability Exposure (CVE) ID: CVE-2014-0482 Common Vulnerability Exposure (CVE) ID: CVE-2014-0483
Copyright	Copyright (C) 2022 Greenbone AG