From 05fab4e394e98bfd6c7a333d0d195438ccfa5450 Mon Sep 17 00:00:00 2001
From: Natalia <124304+nessita@users.noreply.github.com>
Date: Wed, 7 May 2025 10:59:55 -0300
Subject: [PATCH] [5.1.x] Added CVE-2025-32873 to security archive.
Backport of fdabda4e05587347aeb3382a442d7e77c1a0c3e5 from main.
---
docs/releases/security.txt | 11 +++++++++++
1 file changed, 11 insertions(+)
diff --git a/docs/releases/security.txt b/docs/releases/security.txt
index 1f7d2542ff..a4b2d21022 100644
--- a/docs/releases/security.txt
+++ b/docs/releases/security.txt
@@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security
process. These are listed below.
+May 7, 2025 - :cve:`2025-32873`
+-------------------------------
+
+Denial-of-service possibility in `strip_tags()`.
+`Full description
+`__
+
+* Django 5.2 :commit:`(patch) `
+* Django 5.1 :commit:`(patch) <0b42f6a528df966729b24ecaaed67f85e5edc3dc>`
+* Django 4.2 :commit:`(patch) <9cd8028f3e38dca8e51c1388f474eecbe7d6ca3c>`
+
April 2, 2025 - :cve:`2025-27556`
---------------------------------