stable

python-asgiref-3.5.2-1.fc38 and python-django-4.1.12-1.fc38

FEDORA-2023-cc023fabb7 created by salimma 9 months ago for Fedora 38

Security fix for CVE-2023-43665, CVE-2023-41164, and CVE-2023-36053

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-cc023fabb7

This update has been submitted for testing by salimma.

9 months ago

This update's test gating status has been changed to 'ignored'.

9 months ago
User Icon ngompa provided feedback 9 months ago
karma
BZ#2219383 CVE-2023-36053 python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator [fedora-all]
BZ#2237870 CVE-2023-41164 python-django: Potential denial of service vulnerability in ``django.utils.encoding.uri_to_iri()`` [fedora-all]
BZ#2242182 CVE-2023-43665 python-django: Denial-of-service possibility in django.utils.text.Truncator [fedora-all]

This update has been pushed to testing.

9 months ago
User Icon besser82 commented & provided feedback 9 months ago
karma

Works great! LGTM! =)

This update has been submitted for stable by bodhi.

9 months ago

This update has been pushed to stable.

9 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
2
Stable by Time
7 days
Dates
submitted
9 months ago
in testing
9 months ago
in stable
9 months ago
approved
9 months ago
BZ#2219383 CVE-2023-36053 python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator [fedora-all]
0
1
BZ#2237870 CVE-2023-41164 python-django: Potential denial of service vulnerability in ``django.utils.encoding.uri_to_iri()`` [fedora-all]
0
1
BZ#2242182 CVE-2023-43665 python-django: Denial-of-service possibility in django.utils.text.Truncator [fedora-all]
0
1

Automated Test Results