Django 'django.views.static.serve()' Function Open Redirection Vulnerability

Bugtraq ID:	97401
Class:	Input Validation Error
CVE:	CVE-2017-7234
Remote:	Yes
Local:	No
Published:	Apr 04 2017 12:00AM
Updated:	Apr 11 2017 01:03AM
Credit:	Phithon Gong
Vulnerable:	Ubuntu Ubuntu Linux 16.10 Ubuntu Ubuntu Linux 16.04 LTS Ubuntu Ubuntu Linux 14.04 LTS Ubuntu Ubuntu Linux 12.04 LTS i386 Ubuntu Ubuntu Linux 12.04 LTS amd64 Djangoproject Django 1.10.6 Djangoproject Django 1.10.5 Djangoproject Django 1.10.3 Djangoproject Django 1.10.2 Djangoproject Django 1.10.1 Djangoproject Django 1.9.12 Djangoproject Django 1.9.11 Djangoproject Django 1.9.10 Djangoproject Django 1.9.9 Djangoproject Django 1.9.3 Djangoproject Django 1.8.16 Djangoproject Django 1.8.15 Djangoproject Django 1.8.14 Djangoproject Django 1.8.10 Djangoproject Django 1.8.7 Djangoproject Django 1.8.6 Djangoproject Django 1.8.5 Djangoproject Django 1.8.4 Djangoproject Django 1.8.3 Djangoproject Django 1.8.2 Djangoproject Django 1.8.1 Djangoproject Django 1.8 Djangoproject Django 1.9.2 Djangoproject Django 1.9.1 Djangoproject Django 1.9 Djangoproject Django 1.10

Not Vulnerable:	Djangoproject Django 1.10.7 Djangoproject Django 1.9.13 Djangoproject Django 1.8.18