mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-03-10 01:12:53 +00:00
Code Issues 32 Releases Wiki Activity

[4.2.x] Added CVE-2023-41164 to security archive.

Browse Source 
Backport of 8a98768868a104ea3ce10d8182590bdd095d9ccb from main
This commit is contained in:
Mariusz Felisiak 2023-09-04 13:09:48 +02:00
parent a9686cb871
commit a1dd785139
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
docs/releases/security.txt
View File

@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security All security issues have been handled under versions of Django's security
process. These are listed below. process. These are listed below.
September 4, 2023 - :cve:`2023-41164`
-------------------------------------
Potential denial of service vulnerability in
``django.utils.encoding.uri_to_iri()``. `Full description
<https://www.djangoproject.com/weblog/2023/sep/04/security-releases/>`__
* Django 4.2 :commit:`(patch) <9c51b4dcfa0cefcb48231f4d71cafa80821f87b9>`
* Django 4.1 :commit:`(patch) <ba00bc5ec6a7eff5e08be438f7b5b0e9574e8ff0>`
* Django 3.2 :commit:`(patch) <6f030b1149bd8fa4ba90452e77cb3edc095ce54e>`
July 3, 2023 - :cve:`2023-36053` July 3, 2023 - :cve:`2023-36053`
-------------------------------- --------------------------------