FEDORA-2023-a67af7d8f4 — security update for python-django

stable

python-django-4.2.6-1.fc39

FEDORA-2023-a67af7d8f4 created by salimma 2 years ago for Fedora 39

Security fix for CVE-2023-41164 and CVE-2023-43665

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-a67af7d8f4

This update has been submitted for testing by salimma.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

salimma edited this update.

2 years ago

salimma edited this update.

2 years ago

salimma edited this update.

2 years ago

ngompa provided feedback 2 years ago

karma

BZ#2228196 python-django-4.2.4 is available

BZ#2237870 CVE-2023-41164 python-django: Potential denial of service vulnerability in ``django.utils.encoding.uri_to_iri()`` [fedora-all]

BZ#2242182 CVE-2023-43665 python-django: Denial-of-service possibility in django.utils.text.Truncator [fedora-all]

This update has been pushed to testing.

2 years ago

This update has been submitted for stable by bodhi.

There is an ongoing freeze; this will be pushed to stable after the freeze is over.

2 years ago

This update has been pushed to stable.

2 years ago

Please log in to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

2 years ago

in testing

2 years ago

in stable

2 years ago

modified

2 years ago

approved

2 years ago

Builds

python-django-4.2.6-1.fc39

BZ#2228196 python-django-4.2.4 is available

BZ#2237870 CVE-2023-41164 python-django: Potential denial of service vulnerability in ``django.utils.encoding.uri_to_iri()`` [fedora-all]

BZ#2242182 CVE-2023-43665 python-django: Denial-of-service possibility in django.utils.text.Truncator [fedora-all]

python-django-4.2.6-1.fc39

Automated Test Results

ignored