USN-6623-1: Django vulnerability
6 February 2024
Django could be made to denial of service if received a specially crafted input.
Releases
Packages
- python-django - High-level Python web development framework
Details
It was discovered that Django incorrectly handled certain inputs
that uses intcomma template filter. An attacker could possibly
use this issue to cause a denial of service.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 23.10
Ubuntu 22.04
Ubuntu 20.04
Ubuntu 18.04
-
python-django
-
1:1.11.11-1ubuntu1.21+esm3
Available with Ubuntu Pro
-
python3-django
-
1:1.11.11-1ubuntu1.21+esm3
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.