Debian Security Update DSA-4107 django-anymail - security update

Thread starter LinuxBot
Start date Feb 8, 2018

LinuxBot

Member

Feb 8, 2018

It was discovered that the webhook validation of Anymail, a Django email backends for multiple ESPs, is prone to a timing attack. A remote attacker can take advantage of this flaw to obtain a WEBHOOK_AUTHORIZATION secret and post arbitrary email tracking events.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 680 (members: 8, guests: 672)

Latest posts

New to Linux
- Latest: blunix
- 23 minutes ago
Getting Started
DDoS Attacks And The End User
- Latest: CaffeineAddict
- Today at 10:23 AM
Forum Assistance
bad gateway error 502
- Latest: CaffeineAddict
- Today at 10:16 AM
Forum Assistance
Solved I'm having issues rendering PDF files in Firefox
- Latest: darry1966
- Today at 10:15 AM
General Computing
Best Linux Distro for Writing Machine
- Latest: CaffeineAddict
- Today at 10:15 AM
General Linux Questions

Top