[Debian] CVE: CVE-2022-41323/CVE-2022-34265/CVE-2022-28347/CVE-2022-28346/CVE-2022-23833: python3-django: multiple CVEs
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Yue Tao |
Bug Description
CVE-2022-41323: [https:/
In Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were subject to a potential denial of service attack via the locale parameter, which is treated as a regular expression.
CVE-2022-34265: [https:/
An issue was discovered in Django 3.2 before 3.2.14 and 4.0 before 4.0.6. The Trunc() and Extract() database functions are subject to SQL injection if untrusted data is used as a kind/lookup_name value. Applications that constrain the lookup name and kind choice to a known safe list are unaffected.
CVE-2022-28347: [https:/
A SQL injection issue was discovered in QuerySet.explain() in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. This occurs by passing a crafted dictionary (with dictionary expansion) as the **options argument, and placing the injection payload in an option name.
CVE-2022-28346: [https:/
An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.
CVE-2022-23833: [https:/
An issue was discovered in MultiPartParser in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2. Passing certain inputs to multipart forms could result in an infinite loop when parsing files.
Score:
cve_id status cvss3Score av ac pr ui ai
CVE-2022-41323 fixed 7.5 N L N N H
CVE-2022-34265 fixed 9.8 N L N N H
CVE-2022-28347 fixed 9.8 N L N N H
CVE-2022-28346 fixed 9.8 N L N N H
CVE-2022-23833 fixed 7.5 N L N N H
References:
https:/
https:/
https:/
https:/
https:/
['python3-
Found during October 2022 CVE scan using vulscan
CVE References
information type: | Public → Public Security |
Changed in starlingx: | |
assignee: | nobody → Yue Tao (wrytao) |
status: | New → Triaged |
importance: | Undecided → Medium |
tags: | added: stx.8.0 stx.security |
Fix proposed to branch: master /review. opendev. org/c/starlingx /tools/ +/865235
Review: https:/