AVG-1217 log

Package python-django
Status Fixed
Severity Medium
Type multiple issues
Affected 3.1-1
Fixed 3.1.1-1
Current 3.1.1-1 [extra]
Ticket FS#67794
Created Thu Sep 3 17:38:59 2020
Issue Severity Remote Type Description
CVE-2020-24584 Medium Yes Insufficient validation
An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.1.1 (when Python 3.7+ is used). The intermediate-level directories...
CVE-2020-24583 Medium Yes Access restriction bypass
An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.1.1 (when Python 3.7+ is used). FILE_UPLOAD_DIRECTORY_PERMISSIONS...
Date Advisory Package Description
03 Sep 2020 ASA-202009-4 python-django multiple issues