CVE-2020-13254 log

Source
Severity Medium
Remote Yes
Type Information disclosure
Description
An information disclosure issue has been found in Django before 3.0.7, via malformed memcached keys. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage. In order to avoid this vulnerability, key validation is added to the memcached cache backends.
Group Package Affected Fixed Severity Status Ticket
AVG-1176 python-django 3.0.6-2 3.0.7-1 Medium Fixed
Date Advisory Group Package Severity Description
06 Jun 2020 ASA-202006-8 AVG-1176 python-django Medium multiple issues
References
https://github.com/django/django/commit/84b2da5552e100ae3294f564f6c862fef8d0e693