AVG-1000

Package python-django
Status Fixed
Severity High
Type silent downgrade
Affected 2.2.2-1
Fixed 2.2.3-1
Current 2.2.4-1 [extra]
Ticket None
Created Sat Jul 6 19:45:06 2019
Issue Severity Remote Type Description
CVE-2019-12781 High Yes Silent downgrade
An HTTP request is not redirected to HTTPS when the SECURE_PROXY_SSL_HEADER and SECURE_SSL_REDIRECT settings are used, and the proxy connects to Django via...
Date Advisory Package Description
06 Jul 2019 ASA-201907-2 python-django silent downgrade