[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1629-1] python-django security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : python-django
Version        : 1.7.11-1+deb8u4
CVE ID         : CVE-2019-3498
Debian Bug     : #918230

It was discovered that there was a content-spoofing vulnerability in the
default 404 pages in the Django web development framework.

For more information, please see:

  https://www.djangoproject.com/weblog/2019/jan/04/security-releases/

For Debian 8 "Jessie", this issue has been fixed in python-django
version 1.7.11-1+deb8u4.

We recommend that you upgrade your python-django packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=uzAM
-----END PGP SIGNATURE-----


Reply to: