Description
Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.From USN-4902-1:Dennis Brinkrolf discovered that Django incorrectly handled certain filenames. A remote attacker could possibly use this issue to create or overwrite files in unexpected directories.
Solution(s)
ubuntu-upgrade-python-django ubuntu-upgrade-python3-django
ReferencesUSN-4902-1 CVE-2021-28658