1
0
mirror of https://github.com/django/django.git synced 2024-12-23 01:25:58 +00:00
django/docs/releases/4.1.10.txt

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

15 lines
583 B
Plaintext
Raw Normal View History

===========================
Django 4.1.10 release notes
===========================
*July 3, 2023*
Django 4.1.10 fixes a security issue with severity "moderate" in 4.1.9.
CVE-2023-36053: Potential regular expression denial of service vulnerability in ``EmailValidator``/``URLValidator``
===================================================================================================================
``EmailValidator`` and ``URLValidator`` were subject to potential regular
expression denial of service attack via a very large number of domain name
labels of emails and URLs.