CVE-2017-7234 log

Severity Medium
Remote Yes
Type Open redirect
A maliciously crafted URL to a Django site using the serve() view could redirect to any other domain. The view no longer does any redirects as they don’t provide any known, useful functionality.
Note, however, that this view has always carried a warning that it is not hardened for production use and should be used only as a development aid.
Group Package Affected Fixed Severity Status Ticket
AVG-233 python-django, python2-django 1.10.3-2 1.11-1 Medium Fixed
Date Advisory Group Package Severity Type
06 Apr 2017 ASA-201704-2 AVG-233 python-django Medium multiple issues
06 Apr 2017 ASA-201704-1 AVG-233 python2-django Medium multiple issues