advisories/24173.adv

type: security
subject: Updated python-django16 package fixes security vulnerability
CVE:
 - CVE-2019-3498
src:
  6:
   core:
     - python-django16-1.6.11.6-1.1.mga6
description: |
  It was discovered that Django incorrectly handled the default 404 page.
  A remote attacker could use this issue to spoof content using a
  malicious URL (CVE-2019-3498).
references:
 - https://bugs.mageia.org/show_bug.cgi?id=24173
 - https://www.djangoproject.com/weblog/2019/jan/04/security-releases/
 - https://usn.ubuntu.com/3851-1/
ID: MGASA-2019-0040
1	type: security
2	subject: Updated python-django16 package fixes security vulnerability
3	CVE:
4	- CVE-2019-3498
5	src:
6	6:
7	core:
8	- python-django16-1.6.11.6-1.1.mga6
9	description: \|
10	It was discovered that Django incorrectly handled the default 404 page.
11	A remote attacker could use this issue to spoof content using a
12	malicious URL (CVE-2019-3498).
13	references:
14	- https://bugs.mageia.org/show_bug.cgi?id=24173
15	- https://www.djangoproject.com/weblog/2019/jan/04/security-releases/
16	- https://usn.ubuntu.com/3851-1/
17	ID: MGASA-2019-0040