FreeBSD : django -- multiple vulnerabilities (f01292a0-db3c-11e1-a84b-00e0814cab4e)
Medium Nessus Plugin ID 61375
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionThe Django project reports :
Today the Django team is issuing multiple releases -- Django 1.3.2 and Django 1.4.1 -- to remedy security issues reported to us :
- Cross-site scripting in authentication views
- Denial-of-service in image validation
- Denial-of-service via get_image_dimensions()
All users are encouraged to upgrade Django immediately.
SolutionUpdate the affected packages.