Fluid Attacks Database

Description

multiple issues

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
alpine v3.9	py-django	=1.10.5-r0 \|\| =1.10.7-r0 \|\| =1.11-r0 \|\| =1.11-r1 \|\| =1.11.10-r0 \|\| =1.11.11-r0 \|\| =1.11.12-r0 \|\| =1.11.13-r0 \|\| =1.11.15-r0 \|\| =1.11.18-r0 \|\| =1.11.20-r0 \|\| =1.11.21-r0 \|\| =1.11.22-r0 \|\| =1.11.23-r0 \|\| =1.11.27-r0 \|\| =1.11.28-r0 \|\| =1.11.29-r0 \|\| =1.11.5-r0 \|\| =1.11.9-r0 \|\| =1.2.5-r0 \|\| =1.2.5-r1 \|\| =1.4.1-r0 \|\| =1.5-r0 \|\| =1.5.1-r0 \|\| =1.5.5-r0 \|\| =1.5.6-r0 \|\| =1.5.7-r0 \|\| =1.5.8-r0 \|\| =1.6.5-r0 \|\| =1.6.6-r0 \|\| =1.7-r0 \|\| =1.8-r0 \|\| =1.8.10-r0 \|\| =1.8.12-r0 \|\| =1.8.14-r0 \|\| =1.8.15-r0 \|\| =1.8.16-r0 \|\| =1.8.3-r0 \|\| =1.8.4-r0 \|\| =1.8.6-r0 \|\| =1.8.7-r0 \|\| =1.8.8-r0 \|\| >=0 <1.11.29-r1	1.11.29-r1
debian 11	python-django	>=0 <2:2.2.16-1	2:2.2.16-1
debian 13	python-django	>=0 <2:2.2.16-1	2:2.2.16-1
alpine v3.10	py-django	=1.10.5-r0 \|\| =1.10.7-r0 \|\| =1.11-r0 \|\| =1.11-r1 \|\| =1.11.10-r0 \|\| =1.11.11-r0 \|\| =1.11.12-r0 \|\| =1.11.13-r0 \|\| =1.11.15-r0 \|\| =1.11.18-r0 \|\| =1.11.20-r0 \|\| =1.11.20-r1 \|\| =1.11.21-r0 \|\| =1.11.22-r0 \|\| =1.11.23-r0 \|\| =1.11.27-r0 \|\| =1.11.28-r0 \|\| =1.11.29-r0 \|\| =1.11.5-r0 \|\| =1.11.9-r0 \|\| =1.2.5-r0 \|\| =1.2.5-r1 \|\| =1.4.1-r0 \|\| =1.5-r0 \|\| =1.5.1-r0 \|\| =1.5.5-r0 \|\| =1.5.6-r0 \|\| =1.5.7-r0 \|\| =1.5.8-r0 \|\| =1.6.5-r0 \|\| =1.6.6-r0 \|\| =1.7-r0 \|\| =1.8-r0 \|\| =1.8.10-r0 \|\| =1.8.12-r0 \|\| =1.8.14-r0 \|\| =1.8.15-r0 \|\| =1.8.16-r0 \|\| =1.8.3-r0 \|\| =1.8.4-r0 \|\| =1.8.6-r0 \|\| =1.8.7-r0 \|\| =1.8.8-r0 \|\| >=0 <1.11.29-r1	1.11.29-r1
alpine v3.11	py3-django	=1.10.5-r0 \|\| =1.10.7-r0 \|\| =1.11-r0 \|\| =1.11-r1 \|\| =1.11.10-r0 \|\| =1.11.11-r0 \|\| =1.11.12-r0 \|\| =1.11.13-r0 \|\| =1.11.15-r0 \|\| =1.11.18-r0 \|\| =1.11.20-r0 \|\| =1.11.20-r1 \|\| =1.11.21-r0 \|\| =1.11.22-r0 \|\| =1.11.23-r0 \|\| =1.11.23-r1 \|\| =1.11.23-r2 \|\| =1.11.27-r0 \|\| =1.11.28-r0 \|\| =1.11.29-r0 \|\| =1.11.5-r0 \|\| =1.11.9-r0 \|\| =1.2.5-r0 \|\| =1.2.5-r1 \|\| =1.4.1-r0 \|\| =1.5-r0 \|\| =1.5.1-r0 \|\| =1.5.5-r0 \|\| =1.5.6-r0 \|\| =1.5.7-r0 \|\| =1.5.8-r0 \|\| =1.6.5-r0 \|\| =1.6.6-r0 \|\| =1.7-r0 \|\| =1.8-r0 \|\| =1.8.10-r0 \|\| =1.8.12-r0 \|\| =1.8.14-r0 \|\| =1.8.15-r0 \|\| =1.8.16-r0 \|\| =1.8.3-r0 \|\| =1.8.4-r0 \|\| =1.8.6-r0 \|\| =1.8.7-r0 \|\| =1.8.8-r0 \|\| >=0 <1.11.29-r1	1.11.29-r1
debian 12	python-django	>=0 <2:2.2.16-1	2:2.2.16-1
pypi	django	>=2.2a1 <2.2.16 \|\| >=3.0a1 <3.0.10 \|\| >=3.1a1 <3.1.1	2.2.16, 3.0.10, 3.1.1
alpine v3.12	py3-django	=1.10.5-r0 \|\| =1.10.7-r0 \|\| =1.11-r0 \|\| =1.11-r1 \|\| =1.11.10-r0 \|\| =1.11.11-r0 \|\| =1.11.12-r0 \|\| =1.11.13-r0 \|\| =1.11.15-r0 \|\| =1.11.18-r0 \|\| =1.11.20-r0 \|\| =1.11.20-r1 \|\| =1.11.21-r0 \|\| =1.11.22-r0 \|\| =1.11.23-r0 \|\| =1.11.23-r1 \|\| =1.11.23-r2 \|\| =1.11.27-r0 \|\| =1.11.28-r0 \|\| =1.11.29-r0 \|\| =1.11.5-r0 \|\| =1.11.9-r0 \|\| =1.2.5-r0 \|\| =1.2.5-r1 \|\| =1.4.1-r0 \|\| =1.5-r0 \|\| =1.5.1-r0 \|\| =1.5.5-r0 \|\| =1.5.6-r0 \|\| =1.5.7-r0 \|\| =1.5.8-r0 \|\| =1.6.5-r0 \|\| =1.6.6-r0 \|\| =1.7-r0 \|\| =1.8-r0 \|\| =1.8.10-r0 \|\| =1.8.12-r0 \|\| =1.8.14-r0 \|\| =1.8.15-r0 \|\| =1.8.16-r0 \|\| =1.8.3-r0 \|\| =1.8.4-r0 \|\| =1.8.6-r0 \|\| =1.8.7-r0 \|\| =1.8.8-r0 \|\| >=0 <1.11.29-r1	1.11.29-r1
debian 14	python-django	>=0 <2:2.2.16-1	2:2.2.16-1
alpm rolling_release	python-django	>=3.1-1 <3.1.1-1	3.1.1-1

Aliases

1. CVE-2020-245832. NVD-2020-245833. OSV-ALPINE-2020-245834. OSV-2020-245835. OSV-DEBIAN-2020-245836. GHSA-m6gj-h9gm-gw447. GCVE-2020-245838. SECURITY-CVE-2020-245839. SECURITY-TRACKER-CVE-2020-24583

References

1. https://github.com/django/django/commit/8d7271578d7b153435b40fe40236ebec43cbf1b92. https://docs.djangoproject.com/en/dev/releases/security3. https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2020-33.yaml4. https://groups.google.com/forum/#!topic/django-announce/Gdqn58RqIDM5. https://groups.google.com/forum/#!topic/django-announce/zFCMdgUnutU6. https://lists.fedoraproject.org/archives/list/[email protected]/message/F2ZHO3GZCJMP3DDTXCNVFV6ED3W64NAU7. https://lists.fedoraproject.org/archives/list/[email protected]/message/OLGFFLMF3X6USMJD7V5F5P4K2WVUTO3T8. https://lists.fedoraproject.org/archives/list/[email protected]/message/ZCRPQCBTV3RZHKVZ6K6QOAANPRZQD3GI9. https://security.netapp.com/advisory/ntap-20200918-000410. https://usn.ubuntu.com/4479-111. https://www.djangoproject.com/weblog/2020/sep/01/security-releases12. https://www.openwall.com/lists/oss-security/2020/09/01/213. https://www.oracle.com/security-alerts/cpujan2021.html

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.