CVE-2015-2316 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2015-2316 Interim 1 14 2023-12-08T02:15:31Z current 2021-05-30T13:28:22Z 2023-12-08T02:15:31Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2015-2316 The utils.html.strip_tags function in Django 1.6.x before 1.6.11, 1.7.x before 1.7.7, and 1.8.x before 1.8c1, when using certain versions of Python, allows remote attackers to cause a denial of service (infinite loop) by increasing the length of the input string. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2015-April/001339.html E-Mail link for SUSE-SU-2015:0694-1 https://lists.suse.com/pipermail/sle-security-updates/2015-April/001340.html E-Mail link for SUSE-SU-2015:0695-1 https://lists.suse.com/pipermail/sle-security-updates/2015-June/001452.html E-Mail link for SUSE-SU-2015:1109-1 https://lists.suse.com/pipermail/sle-security-updates/2015-June/001453.html E-Mail link for SUSE-SU-2015:1112-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Cloud 2.0 SUSE Cloud 3 SUSE Cloud 4 SUSE Cloud 4 Dependencies SUSE Enterprise Storage 1.0 SUSE OpenStack Cloud 4 SUSE OpenStack Cloud 5 python-Django-1.6.11-0.7.1 python-Django-1.6.11-4.1 python-django python-django-1.5.12-0.9.1 python-Django-1.6.11-4.1 as a component of SUSE Enterprise Storage 1.0 python-django-1.5.12-0.9.1 as a component of SUSE OpenStack Cloud 4 python-Django-1.6.11-0.7.1 as a component of SUSE OpenStack Cloud 5 python-django as a component of SUSE Cloud 2.0 python-django as a component of SUSE Cloud 3 python-django as a component of SUSE Cloud 4 python-django as a component of SUSE Cloud 4 Dependencies The utils.html.strip_tags function in Django 1.6.x before 1.6.11, 1.7.x before 1.7.7, and 1.8.x before 1.8c1, when using certain versions of Python, allows remote attackers to cause a denial of service (infinite loop) by increasing the length of the input string. CVE-2015-2316 SUSE Enterprise Storage 1.0:python-Django-1.6.11-4.1 SUSE OpenStack Cloud 4:python-django-1.5.12-0.9.1 SUSE OpenStack Cloud 5:python-Django-1.6.11-0.7.1 SUSE Cloud 2.0:python-django SUSE Cloud 3:python-django SUSE Cloud 4 Dependencies:python-django SUSE Cloud 4:python-django moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P