5
MEDIUM

CVE-2019-6975

Published: 11/02/2019 Updated: 21/02/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

Vulnerability Summary

Debian: CVE-2019-6975: python-django -- security update

Django could be made to consume resources if it received specially crafted network traffic.

Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x before 2.1.6 allows Uncontrolled Memory Consumption via a malicious attacker-supplied value to the django.utils.numberformat.format() function.

A vulnerability in the django.utils.numberformat.format() function of Django could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on a targeted system. The vulnerability is due to improper memory operations that exist when the django.utils.numberformat.format() function of the affected software receives a decimal with a large number of digits or a large component. An attacker could exploit this vulnerability by sending a request that submits malicious input to the targeted system. A successful exploit could allow the attacker to consume excessive amounts of memory resources, resulting in a DoS condition. The Django Software Foundation has confirmed the vulnerability and released software updates.

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Access Complexity: LOW
Authentication: NONE
Access Vector: NETWORK
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Vulnerability Trend

Affected Products

Vendor Product Versions
DjangoprojectDjango1.11.1, 1.11.2, 1.11.3, 1.11.4, 1.11.5, 1.11.6, 1.11.7, 1.11.8, 1.11.9, 1.11.10, 1.11.11, 1.11.12, 1.11.13, 1.11.14, 1.11.15, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8
CanonicalUbuntu Linux16.04, 18.04, 18.10

Vendor Advisories

Django could be made to consume resources if it received specially crafted network traffic ...
Django 111x before 11119, 20x before 2011, and 21x before 216 allows Uncontrolled Memory Consumption via a malicious attacker-supplied value to the djangoutilsnumberformatformat() function ...
Arch Linux Security Advisory ASA-201902-14 ========================================== Severity: Medium Date : 2019-02-12 CVE-ID : CVE-2019-6975 Package : python-django Type : denial of service Remote : Yes Link : securityarchlinuxorg/AVG-881 Summary ======= The package python-django before version 216-1 is vulnerable to de ...
Arch Linux Security Advisory ASA-201902-15 ========================================== Severity: Medium Date : 2019-02-12 CVE-ID : CVE-2019-6975 Package : python2-django Type : denial of service Remote : Yes Link : securityarchlinuxorg/AVG-882 Summary ======= The package python2-django before version 11119-1 is vulnerable t ...
Django 111x before 11119, 20x before 2011, and 21x before 216 allows uncontrolled memory consumption via a malicious attacker-supplied value to the djangoutilsnumberformatformat() function If the affected numberformat function as used by contribadmin as well as the the floatformat, filesizeformat, and intcomma templates filters rec ...

References