diff --git a/docs/releases/2.2.26.txt b/docs/releases/2.2.26.txt index 9a53c51e27..7fbdc02089 100644 --- a/docs/releases/2.2.26.txt +++ b/docs/releases/2.2.26.txt @@ -33,6 +33,10 @@ resolution logic, that will not call methods, nor allow indexing on dictionaries. As a reminder, all untrusted user input should be validated before use. + +This issue has severity "low" according to the :ref:`Django security policy +`. + CVE-2021-45452: Potential directory-traversal via ``Storage.save()`` ==================================================================== diff --git a/docs/releases/3.2.11.txt b/docs/releases/3.2.11.txt index adff2d6d08..bb68e14a8e 100644 --- a/docs/releases/3.2.11.txt +++ b/docs/releases/3.2.11.txt @@ -33,6 +33,10 @@ resolution logic, that will not call methods, nor allow indexing on dictionaries. As a reminder, all untrusted user input should be validated before use. + +This issue has severity "low" according to the :ref:`Django security policy +`. + CVE-2021-45452: Potential directory-traversal via ``Storage.save()`` ==================================================================== diff --git a/docs/releases/4.0.1.txt b/docs/releases/4.0.1.txt index 3128d20431..d5e129a153 100644 --- a/docs/releases/4.0.1.txt +++ b/docs/releases/4.0.1.txt @@ -33,6 +33,10 @@ resolution logic, that will not call methods, nor allow indexing on dictionaries. As a reminder, all untrusted user input should be validated before use. + +This issue has severity "low" according to the :ref:`Django security policy +`. + CVE-2021-45452: Potential directory-traversal via ``Storage.save()`` ====================================================================