[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 555-1] python-django security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : python-django
Version        : 1.4.5-1+deb7u17
CVE ID         : CVE-2016-6186
Debian Bug     : 831799

It was discovered that Django, a high-level Python web development
framework, is prone to a cross-site scripting vulnerability in the
admin's add/change related popup and debug view.

For Debian 7 "Wheezy", these problems have been fixed in version
1.4.5-1+deb7u17.

We recommend that you upgrade your python-django packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=3McS
-----END PGP SIGNATURE-----


Reply to: