Ubuntu Security Notice 6414-2 - USN-6414-1 and USN-6378-1 fixed CVE-2023-43665 and CVE-2023-41164 in Django, respectively. This update provides the corresponding update for Ubuntu 18.04 LTS. Wenchao Li discovered that the Django Truncator function incorrectly handled very long HTML input. A remote attacker could possibly use this issue to cause Django to consume resources, leading to a denial of service.
f10086f54f995b17b4c0765ad284f4a177e992a12092d7fc61d4ed48781a7141Red Hat Security Advisory 2023-5208-01 - Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language. Issues addressed include a denial of service vulnerability.
6650ff1b3c5dd6773c292454a144dfe34b3bb03e0ef4776ffce03cc5374f99afUbuntu Security Notice 6378-1 - It was discovered that Django incorrectly handled certain URIs with a very large number of Unicode characters. A remote attacker could possibly use this issue to cause Django to consume resources or crash, leading to a denial of service.
47fa9ac06512b8e08f740149efce0fa54ad76de8aa21167d9ec9fe7a2f64ed41PHPJabbers Taxi Booking version 2.0 suffers from a cross site scripting vulnerability.
d9e0fafe887841b6ce3449522faa7e6d7dfbe087107168c65e93e72303dfcb55
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed