Launchpad.net

CVE 2014-0473

The caching framework in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 reuses a cached CSRF token for all anonymous users, which allows remote attackers to bypass CSRF protections by reading the CSRF cookie for anonymous users.

Related bugs and status

CVE-2014-0473 (Candidate) is related to these bugs:

Bug #1309782: Caching of anonymous pages could reveal CSRF token

		In	Importance	Status
1309782	Caching of anonymous pages could reveal CSRF token	python-django (Ubuntu)	Undecided	Fix Released
1309782	Caching of anonymous pages could reveal CSRF token	python-django (Ubuntu Trusty)	Undecided	Fix Released
1309782	Caching of anonymous pages could reveal CSRF token	python-django (Ubuntu Precise)	Undecided	Fix Released
1309782	Caching of anonymous pages could reveal CSRF token	python-django (Ubuntu Saucy)	Undecided	Fix Released
1309782	Caching of anonymous pages could reveal CSRF token	python-django (Ubuntu Lucid)	Undecided	Fix Released
1309782	Caching of anonymous pages could reveal CSRF token	python-django (Ubuntu Quantal)	Undecided	Fix Released

Bug #1323929: Sync python-django 1.6.5-1 (main) from Debian sid (main)

Summary				In	Importance	Status
	1323929	Sync python-django 1.6.5-1 (main) from Debian sid (main)		python-django (Ubuntu)	Wishlist	Fix Released

Bug #1644346: SRU update Trusty to Python Django 1.6.11

Summary				In	Importance	Status
	1644346	SRU update Trusty to Python Django 1.6.11		python-django (Ubuntu)	Medium	Invalid
	1644346	SRU update Trusty to Python Django 1.6.11		python-django (Ubuntu Trusty)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://www.djangoproj...
UBUNTU: USN-2169-1
DEBIAN: DSA-2934
REDHAT: RHSA-2014:0456
REDHAT: RHSA-2014:0457
SUSE: openSUSE-SU-2014:1132
SECUNIA: 61281