FreeBSD : django -- multiple vulnerabilities (cb116651-79db-4c09-93a2-c38f9df46724)
High Nessus Plugin ID 94494
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionThe Django project reports :
Today the Django team released Django 1.10.3, Django 1.9.11, and 1.8.16. These releases addresses two security issues detailed below.
We encourage all users of Django to upgrade as soon as possible.
- User with hard-coded password created when running tests on Oracle
- DNS rebinding vulnerability when DEBUG=True
SolutionUpdate the affected packages.