|Category:||Ubuntu Local Security Checks|
|Title:||Ubuntu USN-1297-1 (python-django)|
|Summary:||Ubuntu USN-1297-1 (python-django)|
|Description:||The remote host is missing an update to python-django|
announced via advisory USN-1297-1.
Pall McMillan discovered that Django used the root namespace when storing
cached session data. A remote attacker could exploit this to modify
Paul McMillan discovered that Django would not timeout on arbitrary URLs
when the application used URLFields. This could be exploited by a remote
attacker to cause a denial of service via resource exhaustion.
Paul McMillan discovered that while Django would check the validity of a
URL via a HEAD request, it would instead use a GET request for the target
of a redirect. This could potentially be used to trigger arbitrary GET
requests via a crafted Location header. (CVE-2011-4138)
It was discovered that Django would sometimes use a request's HTTP Host
header to construct a full URL. A remote attacker could exploit this to
conduct host header cache poisoning attacks via a crafted request.
The problem can be corrected by updating your system to the following
Ubuntu 10.04 LTS:
Common Vulnerability Exposure (CVE) ID: CVE-2011-4136|
Debian Security Information: DSA-2332 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2011-4137
Common Vulnerability Exposure (CVE) ID: CVE-2011-4138
Common Vulnerability Exposure (CVE) ID: CVE-2011-4139
|Copyright||Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com|
|This is only one of 45261 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.