|
|
Subscribe / Log in / New account

python-django-horizon: denial of service

Package(s):python-django-horizon CVE #(s):CVE-2014-8124
Created:January 5, 2015 Updated:January 7, 2015
Description: From the CVE entry:

OpenStack Dashboard (Horizon) before 2014.1.3 and 2014.2.x before 2014.2.1 does not properly handle session records when using a db or memcached session engine, which allows remote attackers to cause a denial of service via a large number of requests to the login page.

Alerts:
Red Hat RHSA-2015:0845-01 python-django-horizon, python-django-openstack-auth 2015-04-16
Red Hat RHSA-2015:0839-01 python-django-horizon and 2015-04-16
openSUSE openSUSE-SU-2015:0078-1 openstack-dashboard 2015-01-19
Fedora FEDORA-2014-17177 python-django-horizon 2015-01-05
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds