Summary: | <dev-python/django-{2.2.22,3.1.10,3.2.2}: header injection possibility via newlines and tabs in URLs (CVE-2021-32052) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Michał Górny <mgorny> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | IN_PROGRESS --- | ||
Severity: | normal | ||
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=787260 | ||
Whiteboard: | B4 [glsa? cve] | ||
Package list: |
dev-python/django-2.2.22
dev-python/django-3.1.10
dev-python/django-3.2.2
|
Runtime testing required: | --- |
Bug Depends on: | 793911 | ||
Bug Blocks: |
Description
Michał Górny
2021-05-07 08:23:42 UTC
Unable to check for sanity:
> no match for package: dev-python/django-2.2.22
All sanity-check issues have been resolved amd64 arm arm64 x86 (ALLARCHES) done all arches done cleanup done. Thank you! Unable to check for sanity:
> no match for package: dev-python/django-2.2.22
GLSA request filed. |