CVE-2012-4520: Input Validation
First published: Wed Oct 10 2012(Updated: )
It was reported that Django's built-in parsing of the Host header was incorrectly handling username/password information (in django.http.HttpRequest.get_host()). This could allow a remote attacker to cause parts of Django, in particular the password-reset mechanism, to generate and display arbitrary URLs to end-users. Acknowledgements: Red Hat would like to thank the upstream Django project for reporting this vulnerability.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| pip/django | >=1.4<1.4.2 | 1.4.2 |
| pip/django | >=1.3<1.3.4 | 1.3.4 |
| Djangoproject Django | =1.3 | |
| Djangoproject Django | =1.3-alpha1 | |
| Djangoproject Django | =1.3-beta1 | |
| Djangoproject Django | =1.3.1 | |
| Djangoproject Django | =1.3.2 | |
| Djangoproject Django | =1.3.3 | |
| Djangoproject Django | =1.4 | |
| Djangoproject Django | =1.4.1 | |
| redhat/Django | <1.3.4 | 1.3.4 |
| redhat/Django | <1.4.2 | 1.4.2 |
| debian/python-django | 2:2.2.28-1~deb11u2 3:3.2.19-1+deb12u1 3:4.2.16-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://nvd.nist.gov/vuln/detail/CVE-2012-4520
- https://github.com/django/django/commit/92d3430f12171f16f566c9050c40feefb830a4a3
- https://github.com/django/django/commit/9305c0e12d43c4df999c3301a1f0c742264a657e
- https://github.com/django/django/commit/b45c377f8f488955e0c7069cad3f3dd21910b071
- https://bugzilla.redhat.com/show_bug.cgi?id=865164
- https://www.djangoproject.com/weblog/2012/oct/17/security/
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691145
- https://lists.fedoraproject.org/pipermail/package-announce/2012-October/090666.html
- https://lists.fedoraproject.org/pipermail/package-announce/2012-October/090904.html
- https://lists.fedoraproject.org/pipermail/package-announce/2012-October/090970.html
- https://ubuntu.com/usn/usn-1632-1
- https://ubuntu.com/usn/usn-1757-1
- https://web.archive.org/web/20140417023920/http://securitytracker.com/id?1027708
- https://www.debian.org/security/2013/dsa-2634
- https://www.openwall.com/lists/oss-security/2012/10/30/4
- https://github.com/advisories/GHSA-2655-q453-22f9 (Advisory)
- https://security-tracker.debian.org/tracker/CVE-2012-4520
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=691145
- http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090666.html
- http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090904.html
- http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090970.html
- http://secunia.com/advisories/51033
- http://secunia.com/advisories/51314
- http://securitytracker.com/id?1027708
- http://ubuntu.com/usn/usn-1632-1
- http://ubuntu.com/usn/usn-1757-1
- http://www.debian.org/security/2013/dsa-2634
- http://www.openwall.com/lists/oss-security/2012/10/30/4
- http://www.osvdb.org/86493
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=625210&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=625210&action=edit
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=625211&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=625211&action=edit
- https://access.redhat.com/security/cve/CVE-2012-4520
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=867732
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=867733
- https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2012-7.yaml
- https://www.djangoproject.com/weblog/2012/oct/17/security
- http://people.debian.org/~hertzog/packages/python-django_1.2.3-3+squeeze4_amd64.changes
- http://debian-handbook.info/get/
- collector/nvd-index
- agent/author
- agent/first-publish-date
- agent/type
- collector/mitre-cve
- source/MITRE
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2012-4520
- agent/software-canonical-lookup
- agent/remedy
- agent/weakness
- agent/description
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-2655-q453-22f9
- collector/nvd-cve
- source/NVD
- collector/debian-bugs
- source/Debian
- agent/references
- agent/last-modified-date
- agent/severity
- collector/security-tracker-debian
- agent/softwarecombine
- agent/event
- agent/tags
- collector/github-advisory
- vendor/djangoproject
- canonical/djangoproject django
- version/djangoproject django/1.3
- version/djangoproject django/1.3-alpha1
- version/djangoproject django/1.3-beta1
- version/djangoproject django/1.3.1
- version/djangoproject django/1.3.2
- version/djangoproject django/1.3.3
- version/djangoproject django/1.4
- version/djangoproject django/1.4.1
- package-manager/redhat
- package-manager/pip
- package-manager/debian