[Secure-testing-team] Bug#696535: python-django: possible Host header poisoning and Redirect poisoning
Jonas Smedegaard
dr at jones.dk
Sat Dec 22 14:37:52 UTC 2012
Package: python-django
Version: 1.4.2-2
Severity: grave
Tags: security
Justification: user security hole
The Django project has recently issued [security updates] for improved
tightening against Host header poisoning and Redirect poisoning.
- Jonas
[security updates]: https://www.djangoproject.com/weblog/2012/dec/10/security/
More information about the Secure-testing-team
mailing list