CVE-2015-5143

Related Files

Gentoo Linux Security Advisory 201510-06

Posted Nov 2, 2015

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201510-6 - Multiple vulnerabilities have been found in Django, the worst of which may allow a remote attacker to cause Denial of Service. Versions less than 1.8.3 are affected.

tags | advisory, remote, denial of service, vulnerability

systems | linux, gentoo

advisories | CVE-2015-5143, CVE-2015-5144, CVE-2015-5145

SHA-256 | 8bd4c2b1b1de56b721cbb6931bbd2b8930e0465c4d3e16665e5015985af20ac7

Download | Favorite | View

Red Hat Security Advisory 2015-1686-01

Posted Aug 26, 2015

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-1686-01 - Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY principle. A flaw was found in the Django session backend, which could allow an unauthenticated attacker to create session records in the configured session store, causing a denial of service by filling up the session store.

tags | advisory, web, denial of service, python

systems | linux, redhat

advisories | CVE-2015-5143

SHA-256 | acf60870374e52838ceb79bf380b03c1f8262786630a6240d6a305c27b59d945

Download | Favorite | View

Red Hat Security Advisory 2015-1678-01

Posted Aug 24, 2015

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-1678-01 - Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY principle. A flaw was found in the Django session backends whereby an unauthenticated attacker could cause session records to be created in the configured session store, leading to a Denial of Service.

tags | advisory, web, denial of service, python

systems | linux, redhat

advisories | CVE-2015-5143

SHA-256 | da0bd1ff67bde2125708c6affce9b0c3dddf75822665f35c77de69c65d52fb71

Download | Favorite | View

Ubuntu Security Notice USN-2671-1

Posted Jul 9, 2015

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2671-1 - Eric Peterson and Lin Hua Cheng discovered that Django incorrectly handled session records. A remote attacker could use this issue to cause a denial of service. Sjoerd Job Postmus discovered that DJango incorrectly handled newline characters when performing validation. A remote attacker could use this issue to perform header injection attacks.

tags | advisory, remote, denial of service

systems | linux, ubuntu

advisories | CVE-2015-5143, CVE-2015-5144

SHA-256 | 0509283524a48dd31b057eda1e79a10c482b6a86458bd5ff727676cd15749875

Download | Favorite | View

Debian Security Advisory 3305-1

Posted Jul 9, 2015

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3305-1 - Several vulnerabilities were discovered in Django, a high-level Python web development framework.

tags | advisory, web, vulnerability, python

systems | linux, debian

advisories | CVE-2015-5143, CVE-2015-5144

SHA-256 | aed2a016c85ad2a0b21644993f12b4ef6e2aaf684e436b95f143ad5c88132dd7

Download | Favorite | View