Advisories for these issues have been issued by Ubuntu, Debian, and SuSE: http://www.ubuntu.com/usn/usn-1297-1/ (December 8) http://www.debian.org/security/2011/dsa-2332 (October 29) http://lists.opensuse.org/opensuse-updates/2012-05/msg00037.html (today) CVEs are: CVE-2011-4136 CVE-2011-4137 CVE-2011-4138 CVE-2011-4139 CVE-2011-4140 The solution is to upgrade to 1.3.1 (already available in Mageia 2).
CC: (none) => misc
CC: (none) => makowski.mageia
1.3.1 is allready in Mageia 1 : * lun. 12 sept. 2011 14:00:00 CEST misc <misc> 1.3.1-1.mga1 + Revision: 142754 - security update, fix several issues ( list on https://www.djangoproject.com/weblog/2011/sep/09/security-releases-issued/ ) urpmq -f python-django python-django-1.3-1.mga1.noarch|python-django-1.3.1-1.mga1.noarch|python-django-1.3-1.mga1.noarch|python-django-1.3.1-1.mga1.noarch
Whoops, thanks Philippe.
Status: NEW => RESOLVEDResolution: (none) => INVALID