14 DAY TRIAL // On September 24, Canonical published details about Django vulnerabilities for its Ubuntu 13.04, Ubuntu 12.10, Ubuntu 12.04 LTS, Ubuntu 11.10, and Ubuntu 10.04 LTS operating systems.
According to Canonical, several security issues have been fixed in Django.
For example, it has been discovered that Django incorrectly handled large passwords. A remote attacker could have used this issue to consume resources, resulting in a denial of service.
Also, Django incorrectly handled ssi templates. An attacker could have used this exploit to read arbitrary files.
For a more detailed description of the security problems, you can visit Canonical's security notification.
Users can simply fix the security flaws by upgrading the operating systems to the latest python-django package, specific to each distribution.
A normal system update, executed with the Update Manager, will implement all the necessary changes. A complete system restart is not necessary.