Test ID:	1.3.6.1.4.1.25623.1.1.10.2014.0366
Category:	Mageia Linux Local Security Checks
Title:	Mageia: Security Advisory (MGASA-2014-0366)
Summary:	The remote host is missing an update for the 'python-django, python-django14' package(s) announced via the MGASA-2014-0366 advisory.
Description:	Summary: The remote host is missing an update for the 'python-django, python-django14' package(s) announced via the MGASA-2014-0366 advisory. Vulnerability Insight: Updated python-django and python-django14 packages fix security vulnerabilities: These releases address an issue with reverse() generating external URLs (CVE-2014-0480), a denial of service involving file uploads (CVE-2014-0481), a potential session hijacking issue in the remote-user middleware (CVE-2014-0482), and a data leak in the administrative interface (CVE-2014-0483). Affected Software/OS: 'python-django, python-django14' package(s) on Mageia 3, Mageia 4. Solution: Please install the updated package(s). CVSS Score: 6.0 CVSS Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0480 BugTraq ID: 69425 http://www.securityfocus.com/bid/69425 Debian Security Information: DSA-3010 (Google Search) http://www.debian.org/security/2014/dsa-3010 http://secunia.com/advisories/59782 http://secunia.com/advisories/61276 http://secunia.com/advisories/61281 SuSE Security Announcement: openSUSE-SU-2014:1132 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html Common Vulnerability Exposure (CVE) ID: CVE-2014-0481 Common Vulnerability Exposure (CVE) ID: CVE-2014-0482 Common Vulnerability Exposure (CVE) ID: CVE-2014-0483
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.