Ubuntu Update For Python-django Vulnerability USN-1004-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1004-1

Solution

Please Install the Updated Packages.

Insight

It was discovered that Django did not properly sanitize the cookie value when applying CSRF protections resulting in a cross-site scripting (XSS) vulnerability. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.

Affected

python-django vulnerability on Ubuntu 10.10

Severity

Classification

CVE CVE-2010-3082
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Ubuntu Update for cinder USN-2208-1
Ubuntu Update for clamav vulnerability USN-1076-1
Ubuntu Update for avahi vulnerabilities USN-696-1
Ubuntu Update for dovecot USN-1143-1
Ubuntu Update for clamav USN-1816-1

Ubuntu Update for python-django vulnerability USN-1004-1

Take action and discover your vulnerabilities