python-django (3:5.0.3-1)
[PTS] [DDPO]
OLD: VCS is behind the version in the archive: 3:4.2.11-1 < 3:5.0.3-1.
- Git: https://salsa.debian.org/python-team/packages/python-django.git
-
- Branch: debian/sid
- Path: debian/changelog
- Repo size: 876544
- Browser: https://salsa.debian.org/python-team/packages/python-django
- Last scan: 2024-03-14 02:41:30+00
- Next scan: 2024-03-20 15:58:00+00
- CI pipeline status: success
- Debian changelog in Git:
python-django (3:4.2.11-1) unstable; urgency=high
* New upstream security release:
- CVE-2024-27351: Fix a potential regular expression denial-of-service
(ReDoS) attack in django.utils.text.Truncator.words. This method
(with html=True) and the truncatewords_html template filter were subject
to a potential regular expression denial-of-service attack via a suitably
crafted string. This is, in part, a follow up to CVE-2019-14232 and
CVE-2023-43665.
<https://docs.djangoproject.com/en/dev/releases/4.2.11/>
-- Chris Lamb <lamby@debian.org> Tue, 05 Mar 2024 13:03:35 +0000
- This branch is even with tag debian/3%4.2.11-1