USN-4902-1: Django vulnerability
6 April 2021
Django could be made to overwrite files.
- python-django - High-level Python web development framework
Dennis Brinkrolf discovered that Django incorrectly handled certain
filenames. A remote attacker could possibly use this issue to create or
overwrite files in unexpected directories.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.