AVG-1217 log
| Package | python-django |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 3.1-1 |
| Fixed | 3.1.1-1 |
| Current | 4.2.11-1 [extra] |
| Ticket | FS#67794 |
| Created | Thu Sep 3 17:38:59 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-24584 | Medium | Yes | Insufficient validation | An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.1.1 (when Python 3.7+ is used). The intermediate-level directories... |
| CVE-2020-24583 | Medium | Yes | Access restriction bypass | An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.1.1 (when Python 3.7+ is used). FILE_UPLOAD_DIRECTORY_PERMISSIONS... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 03 Sep 2020 | ASA-202009-4 | python-django | multiple issues |