1
PublicDateAtUSN: 2015-01-13
2
Candidate: CVE-2015-0222
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0222
6
https://www.djangoproject.com/weblog/2015/jan/13/security/
7
https://usn.ubuntu.com/usn/usn-2469-1
9
ModelMultipleChoiceField in Django 1.6.x before 1.6.10 and 1.7.x before
10
1.7.3, when show_hidden_initial is set to True, allows remote attackers to
11
cause a denial of service by submitting duplicate values, which triggers a
12
large number of SQL queries.
17
Discovered-by: Keryn Knight
20
Patches_python-django:
21
upstream_python-django: released (1.6.10)
22
lucid_python-django: not-affected
23
precise_python-django: not-affected
24
trusty_python-django: released (1.6.1-2ubuntu0.6)
25
utopic_python-django: released (1.6.6-1ubuntu2.1)
26
devel_python-django: released (1.6.6-1ubuntu3)