Django: Multiple vulnerabilities

Django: Multiple vulnerabilities Multiple vulnerabilities have been found in Django, the worst of which may lead to Denial of Service. django 2014-12-13 2014-12-13 521324 remote 1.6.7 1.5.10 1.4.15 1.6.7

Django is a Python-based web framework.

Multiple vulnerabilities have been discovered in Django. Please review the CVE identifiers referenced below for details.

A remote attacker may be able to create a Denial of Service condition, obtain sensitive information, or hijack web sessions.

There is no known workaround at this time.

All Django 1.6 users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-python/django-1.6.7"

All Django 1.5 users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-python/django-1.5.10"

All Django 1.4 users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-python/django-1.4.15"

CVE-2014-0480 CVE-2014-0481 CVE-2014-0482 CVE-2014-0483 K_F ackle