Skip to content
Snippets Groups Projects
Commit 27cb8d43 authored by Chris Lamb's avatar Chris Lamb 👀
Browse files

releasing package python-django version 3:4.2.21-1

parent cd1fd675
Branches
Tags debian/3%4.2.21-1
No related merge requests found
Pipeline #872255 passed with warnings
Stage: provisioning
Stage: build
Stage: test
Hide whitespace changes
Inline Side-by-side
Showing
with 18 additions and 3 deletions
debian/changelog
+ 18
3
View file @ 27cb8d43
python-django (3:4.2.21-1) UNRELEASED; urgency=medium
python-django (3:4.2.21-1) unstable; urgency=medium
* New upstream release.
* New upstream security release:
- CVE-2025-32873: Denial-of-service possibility in strip_tags()
django.utils.html.strip_tags() would be slow to evaluate certain inputs
containing large sequences of incomplete HTML tags. This function is used
to implement the striptags template filter, which was therefore also
vulnerable. strip_tags() now raises a SuspiciousOperation exception if it
encounters an unusually large number of unclosed opening tags.
(Closes: #1104872)
<https://www.djangoproject.com/weblog/2025/may/07/security-releases/>
* Bump Standards-Version to 4.7.2.
* Add pybuild-plugin-pyproject to Build-Depends.
-- Chris Lamb <lamby@debian.org> Wed, 07 May 2025 13:54:33 -0700
-- Chris Lamb <lamby@debian.org> Fri, 09 May 2025 15:47:11 -0700
python-django (3:4.2.20-1) unstable; urgency=high
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment