Updated python-django and python-django14 packages fix security vulnerabilities
Publication date: 27 Aug 2015Modification date: 27 Aug 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-5963 , CVE-2015-5964
Description
Lin Hua Cheng discovered that Django incorrectly handled the session store. A remote attacker could use this issue to cause the session store to fill up, resulting in a denial of service.
References
SRPMS
4/core
- python-django14-1.4.22-1.mga4
5/core
- python-django-1.8.4-1.mga5