mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-09-25 16:09:12 +00:00
Code Issues 32 Releases Wiki Activity

[4.2.x] Added CVE-2025-57833 to security archive.

Browse Source 
Backport of f0c05a40d27d69ef3a7b4e5e0199b5dba5b11feb from main.
This commit is contained in:
Sarah Boyce 2025-09-03 15:26:45 +02:00
parent 5636e82896
commit 07e5fb9f56
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
docs/releases/security.txt
View File

@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security All security issues have been handled under versions of Django's security
process. These are listed below. process. These are listed below.
September 3, 2025 - :cve:`2025-57833`
-------------------------------------
Potential SQL injection in FilteredRelation column aliases.
`Full description
<https://www.djangoproject.com/weblog/2025/sep/03/security-releases/>`__
* Django 5.2 :commit:`(patch) <4c044fcc866ec226f612c475950b690b0139d243>`
* Django 5.1 :commit:`(patch) <102965ea93072fe3c39a30be437c683ec1106ef5>`
* Django 4.2 :commit:`(patch) <31334e6965ad136a5e369993b01721499c5d1a92>`
June 4, 2025 - :cve:`2025-48432` June 4, 2025 - :cve:`2025-48432`
-------------------------------- --------------------------------