Debian DSA-1640-1 : python-django - several vulnerabilities

medium Nessus Plugin ID 34253

Synopsis

The remote Debian host is missing a security-related update.

Description

Simon Willison discovered that in Django, a Python web framework, the feature to retain HTTP POST data during user reauthentication allowed a remote attacker to perform unauthorized modification of data through cross site request forgery. This is possible regardless of the Django plugin to prevent cross site request forgery being enabled. The Common Vulnerabilities and Exposures project identifies this issue as CVE-2008-3909.

In this update the affected feature is disabled; this is in accordance with upstream's preferred solution for this situation.

This update takes the opportunity to also include a relatively minor denial of service attack in the internationalisation framework, known as CVE-2007-5712.

Solution

Upgrade the python-django package.

For the stable distribution (etch), these problems have been fixed in version 0.95.1-1etch2.

See Also

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=497765

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=448838

https://security-tracker.debian.org/tracker/CVE-2008-3909

https://security-tracker.debian.org/tracker/CVE-2007-5712

https://www.debian.org/security/2008/dsa-1640

Plugin Details

Severity: Medium

ID: 34253

File Name: debian_DSA-1640.nasl

Version: 1.17

Type: local

Agent: unix

Published: 9/23/2008

Updated: 1/4/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.7

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:python-django, cpe:/o:debian:debian_linux:4.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Exploit Ease: No known exploits are available

Patch Publication Date: 9/20/2008

Reference Information

CVE: CVE-2007-5712, CVE-2008-3909

BID: 26227, 29209

CWE: 352, 399

DSA: 1640