CVE-2020-24584
pypi/Django
Incorrect Default Permissions
An issue was discovered in Django (when Python + is used). The intermediate-level directories of the filesystem cache had the system's standard umask rather than 0o077
.
All versions starting from 2.2 before 2.2.16, all versions starting from 3.0 before 3.0.10, all versions starting from 3.1 before 3.1.1
Upgrade to versions 2.2.16, 3.0.10, 3.1.1 or above.
2020-09-11
source |