Django Software Foundation · Django · CVE-2015-5143
**Name of the Vulnerable Software and Affected Versions**
Django versions 1.5.x through 1.6.x
Django versions 1.7.x before 1.7.9
Django versions 1.8.x before 1.8.3
Django versions prior to 1.4.21
**Description**
The issue is related to resource management errors in the Django web application platform. It can be exploited by a remote attacker to cause a denial of service by creating multiple requests with unique session keys, leading to session store consumption.
**Recommendations**
For Django versions 1.5.x through 1.6.x, update to a version outside of this range to resolve the issue.
For Django versions 1.7.x before 1.7.9, update to version 1.7.9 or later.
For Django versions 1.8.x before 1.8.3, update to version 1.8.3 or later.
For Django versions prior to 1.4.21, update to version 1.4.21 or later.