mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-10-24 14:16:09 +00:00
Code Issues 32 Releases Wiki Activity

[5.0.x] Added CVE-2024-27351 to security archive.

Browse Source 
Backport of da39ae4b5f from main
This commit is contained in:
Mariusz Felisiak
2024-03-04 10:10:35 +01:00
parent 6f38ca2c2e
commit d890728833
1 changed files with 11 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
docs/releases/security.txt
View File

@@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security All security issues have been handled under versions of Django's security
process. These are listed below. process. These are listed below.
March 4, 2024 - :cve:`2024-27351`
---------------------------------
Potential regular expression denial-of-service in
``django.utils.text.Truncator.words()``. `Full description
<https://www.djangoproject.com/weblog/2024/mar/04/security-releases/>`__
* Django 5.0 :commit:`(patch) <3394fc6132436eca89e997083bae9985fb7e761e>`
* Django 4.2 :commit:`(patch) <3c9a2771cc80821e041b16eb36c1c37af5349d4a>`
* Django 3.2 :commit:`(patch) <072963e4c4d0b3a7a8c5412bc0c7d27d1a9c3521>`
February 6, 2024 - :cve:`2024-24680` February 6, 2024 - :cve:`2024-24680`
------------------------------------ ------------------------------------