SUSE-SU-2015:1815-1
Advisory lineage Upstream: 3 Downstream: 0
Published: 15 Oct 2015, 02:36
Last modified:04 Feb 2026, 03:12
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
15 Oct 2015, 02:36
Published
Vulnerability first disclosed
04 Feb 2026, 03:12
Last Modified
Vulnerability information updated
Description
Security update for python-Django This update for python-Django fixes the following security issues: - Prevent Denial-of-service possibility by filling session store. (bsc#937522, CVE-2015-5143) - Prevent Header injection possibility. (bsc#937523, CVE-2015-5144) - A remote denial of service (resource exhaustion) attack against the django session store was fixed in Python Django. This might have allowed remote attackers to exhaust existing web sessions. (bsc#941587, CVE-2015-5963)
Affected Systems
- suse•python-Django&distro=SUSE Enterprise Storage 1.0
< 1.6.11-8.1
References (7)
- https://www.suse.com/support/update/announcement/2015/suse-su-20151815-1/
- https://bugzilla.suse.com/937522
- https://bugzilla.suse.com/937523
- https://bugzilla.suse.com/941587
- https://www.suse.com/security/cve/CVE-2015-5143
- https://www.suse.com/security/cve/CVE-2015-5144
- https://www.suse.com/security/cve/CVE-2015-5963