mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-06-17 09:29:17 +00:00
Code Issues 32 Releases Wiki Activity

[4.2.x] Added CVE-2025-32873 to security archive.

Browse Source 
Backport of fdabda4e05587347aeb3382a442d7e77c1a0c3e5 from main.
This commit is contained in:
Natalia 2025-05-07 10:59:55 -03:00
parent 9db7076057
commit 0d5495850a
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
docs/releases/security.txt
View File

@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security All security issues have been handled under versions of Django's security
process. These are listed below. process. These are listed below.
May 7, 2025 - :cve:`2025-32873`
-------------------------------
Denial-of-service possibility in `strip_tags()`.
`Full description
<https://www.djangoproject.com/weblog/2025/may/07/security-releases/>`__
* Django 5.2 :commit:`(patch) <c9731dc656e533187b021b4d81f8293d6c943a43>`
* Django 5.1 :commit:`(patch) <0b42f6a528df966729b24ecaaed67f85e5edc3dc>`
* Django 4.2 :commit:`(patch) <9cd8028f3e38dca8e51c1388f474eecbe7d6ca3c>`
March 6, 2025 - :cve:`2025-26699` March 6, 2025 - :cve:`2025-26699`
--------------------------------- ---------------------------------