From 155e06a50b7b65a7bb3c888ae51bdf1a2bd1a1e2 Mon Sep 17 00:00:00 2001 From: Carlton Gibson Date: Tue, 4 Jan 2022 10:50:23 +0100 Subject: [PATCH] Corrected merge error in release notes. --- docs/releases/2.2.26.txt | 4 ++++ docs/releases/3.2.11.txt | 4 ++++ docs/releases/4.0.1.txt | 4 ++++ 3 files changed, 12 insertions(+) diff --git a/docs/releases/2.2.26.txt b/docs/releases/2.2.26.txt index 9a53c51e27..7fbdc02089 100644 --- a/docs/releases/2.2.26.txt +++ b/docs/releases/2.2.26.txt @@ -33,6 +33,10 @@ resolution logic, that will not call methods, nor allow indexing on dictionaries. As a reminder, all untrusted user input should be validated before use. + +This issue has severity "low" according to the :ref:`Django security policy +`. + CVE-2021-45452: Potential directory-traversal via ``Storage.save()`` ==================================================================== diff --git a/docs/releases/3.2.11.txt b/docs/releases/3.2.11.txt index adff2d6d08..bb68e14a8e 100644 --- a/docs/releases/3.2.11.txt +++ b/docs/releases/3.2.11.txt @@ -33,6 +33,10 @@ resolution logic, that will not call methods, nor allow indexing on dictionaries. As a reminder, all untrusted user input should be validated before use. + +This issue has severity "low" according to the :ref:`Django security policy +`. + CVE-2021-45452: Potential directory-traversal via ``Storage.save()`` ==================================================================== diff --git a/docs/releases/4.0.1.txt b/docs/releases/4.0.1.txt index 3128d20431..d5e129a153 100644 --- a/docs/releases/4.0.1.txt +++ b/docs/releases/4.0.1.txt @@ -33,6 +33,10 @@ resolution logic, that will not call methods, nor allow indexing on dictionaries. As a reminder, all untrusted user input should be validated before use. + +This issue has severity "low" according to the :ref:`Django security policy +`. + CVE-2021-45452: Potential directory-traversal via ``Storage.save()`` ====================================================================