FLAT-B1A7P – Vulnerability | Fluid Attacks Database

Database

Description

multiple issues

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
pypi	django	>=2.2a1 <2.2.24 \|\| >=3.0a1 <3.1.12 \|\| >=3.2a1 <3.2.4	2.2.24, 3.1.12, 3.2.4
debian 13	python-django	>=0 <2:2.2.24-1	2:2.2.24-1
debian 12	python-django	>=0 <2:2.2.24-1	2:2.2.24-1
debian 14	python-django	>=0 <2:2.2.24-1	2:2.2.24-1
debian 11	python-django	>=0 <2:2.2.24-1	2:2.2.24-1
alpm rolling_release	python-django	>=3.2.3-2 <3.2.4-1	3.2.4-1

Aliases

1. CVE-2021-335712. NVD-2021-335713. OSV-2021-335714. OSV-DEBIAN-2021-335715. GHSA-p99v-5w3c-jqq96. GCVE-2021-335717. SECURITY-TRACKER-CVE-2021-33571

References

1. https://github.com/django/django/commit/203d4ab9ebcd72fc4d6eb7398e66ed9e474e118e2. https://github.com/django/django/commit/9f75e2e562fa0c0482f3dde6fc7399a9070b4a3d3. https://github.com/django/django/commit/f27c38ab5d90f68c9dd60cabef248a570c0be8fc4. https://docs.djangoproject.com/en/3.2/releases/security5. https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2021-99.yaml6. https://groups.google.com/g/django-announce/c/sPyjSKMi8Eo7. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4SQG2EAF4WCI2SLRL6XRDJ3RPK3ZRDV8. https://lists.fedoraproject.org/archives/list/[email protected]/message/B4SQG2EAF4WCI2SLRL6XRDJ3RPK3ZRDV9. https://security.netapp.com/advisory/ntap-20210727-000410. https://www.djangoproject.com/weblog/2021/jun/02/security-releases

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.