mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-09-10 02:59:34 +00:00
Code Issues 32 Releases Wiki Activity

Added CVE-2025-57833 to security archive.

Browse Source
This commit is contained in:
Sarah Boyce 2025-09-03 15:26:45 +02:00
parent ab7c7dd99b
commit f0c05a40d2
1 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
docs/releases/security.txt
View File

@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security
process. These are listed below.
September 3, 2025 - :cve:`2025-57833`
-------------------------------------
Potential SQL injection in FilteredRelation column aliases.
`Full description
<https://www.djangoproject.com/weblog/2025/sep/03/security-releases/>`__
* Django 5.2 :commit:`(patch) <4c044fcc866ec226f612c475950b690b0139d243>`
* Django 5.1 :commit:`(patch) <102965ea93072fe3c39a30be437c683ec1106ef5>`
* Django 4.2 :commit:`(patch) <31334e6965ad136a5e369993b01721499c5d1a92>`
June 4, 2025 - :cve:`2025-48432`
--------------------------------