FEDORA-2015-13824 — security update for python-django — Fedora Updates System

obsolete

python-django-1.8.4-1.fc23

FEDORA-2015-13824 created by mrunge 9 years ago for Fedora 23

python-django-1.8.4-1.fc23

Do not install bash completion for python executables (Ville Skyttä, #1253076)
CVE-2015-5963 Denial-of-service possibility in logout() view by filling session store (#1254911)
CVE-2015-5964 Denial-of-service possibility in logout() view by filling session store (#1252891)

This update has been submitted for testing by mrunge.

This update has been pushed to testing

akurtakov commented & provided feedback 9 years ago

karma

works for me

This update has reached 49 days in testing and can be pushed to stable now if the maintainer wishes

williamjmorenor commented & provided feedback 9 years ago

karma

WFM

This update has been obsoleted by python-django-1.8.5-1.fc23.

Please login to add feedback.

Metadata

Type

security

Karma

2

Signed

Content Type

RPM

Test Gating

None

Autopush Settings

Unstable by Karma

-3

Stable by Karma

3

Stable by Time

disabled

Thresholds

Minimum Karma

+1

Minimum Testing

7 days

Dates

submitted

9 years ago

in testing

9 years ago

Builds

1

python-django-1.8.4-1.fc23

BZ#1242715 CVE-2015-5143 python-django: Django: possible DoS by filling session store [fedora-all]

0

0

BZ#1242720 CVE-2015-5144 python-django: Django: possible header injection due to validators accepting newlines in input [fedora-all]

0

0

BZ#1242721 CVE-2015-5144 python-django: Django: possible header injection due to validators accepting newlines in input [epel-7]

0

0

BZ#1253076 Do not install bash completion for python executables

0

0

BZ#1254911 CVE-2015-5963 python-django: Denial-of-service possibility in logout() view by filling session store [fedora-all]

0

0

BZ#1254921 CVE-2015-5964 python-django: Denial-of-service possibility in logout() view by filling session store [fedora-all]

0

0

python-django-1.8.4-1.fc23

Automated Test Results

None

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 8.3.0^202501160952gitcee09e8 on bodhi-web-246-mtmqx.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

• Composes • Legal • Privacy policy •