Univention Bugzilla – Bug 52064
(ES 4.3) python-django
Last modified: 2020-11-30 18:10:07 CET
Provide python-django version 1:1.10.7-2+deb9u9 for UCS 4.3 First imported at bug #51543 This update addresses the following issues: * potential data leakage via malformed memcached keys (CVE-2020-13254) * possible XSS via admin ForeignKeyRawIdWidget (CVE-2020-13596)
*** Bug 51974 has been marked as a duplicate of this bug. ***
dpkg -l python-django ii python-django 1:1.10.7-2+deb9u9
CLOSED: Released as extsec4.3 update