This repository has been archived by the owner on May 22, 2024. It is now read-only.
[Snyk High] - django Denial of Service (DoS)(Due 03/15/2024) #833
Comments
This was referenced Feb 14, 2024
This was referenced Feb 29, 2024
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
https://app.snyk.io/org/fecgov/project/5e01de94-91bc-43d8-90b1-8843384b4b26#issue-SNYK-PYTHON-DJANGO-6230369
Overview
Affected versions of this package are vulnerable to Denial of Service (DoS) in the intcomma template filter, when used with very long strings. Exploiting this vulnerability could lead to a system crash.
Introduced through
[email protected], [email protected] and others
Fixed in: [email protected], @4.2.10, @5.0.2
Detailed paths and remediation
Introduced through: [email protected] › [email protected]
Fix: Upgrade django to version 3.2.24 or 4.2.10 or 5.0.2
Introduced through: [email protected] › [email protected] › [email protected]
Fix: Pin django to version 3.2.24 or 4.2.10 or 5.0.2
Introduced through: [email protected] › [email protected] › [email protected]
Fix: Pin django to version 3.2.24 or 4.2.10 or 5.0.2
Introduced through: [email protected] › [email protected] › [email protected] › [email protected] › [email protected]
Fix: Pin django to version 3.2.24 or 4.2.10 or 5.0.2
Detailed paths and remediation
Introduced through: [email protected] › [email protected]
Fix: Upgrade django to version 3.2.24 or 4.2.10 or 5.0.2
Introduced through: [email protected] › [email protected] › [email protected]
Fix: Pin django to version 3.2.24 or 4.2.10 or 5.0.2
Introduced through: [email protected] › [email protected] › [email protected]
Fix: Pin django to version 3.2.24 or 4.2.10 or 5.0.2
Introduced through: [email protected] › [email protected] › [email protected] › [email protected] › [email protected]
Fix: Pin django to version 3.2.24 or 4.2.10 or 5.0.2
Completion criteria:
The text was updated successfully, but these errors were encountered: