View at Official ubuntu advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2007-0405 medium priority: Ubuntu including 1 source packages (python-django), 5 status rows across 5 suites (dapper, edgy, feisty, gutsy, upstream): DNE 2, not-affected 2, released 1.
The LazyUser class in the AuthenticationMiddleware for Django 0.95 does not properly cache the user name across requests, which allows remote authenticated users to gain the privileges of a different user.