MIRRORS/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-01-27 12:01:38 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
0d50915759
meta-openembedded/meta-python/recipes-devtools/python/python3-django
History
Haixiao Yan 0d50915759 python3-django: fix CVE-2025-64459 
The methods QuerySet.filter(), QuerySet.exclude(), and QuerySet.get(), and the
class Q() were subject to SQL injection when using a suitably crafted
dictionary, with dictionary expansion, as the _connector argument.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-64459
https://shivasurya.me/security/django/2025/11/07/django-sql-injection-CVE-2025-64459.html

Upstream-patch:
98e642c691

Signed-off-by: Haixiao Yan <haixiao.yan.cn@windriver.com>
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
2025-12-18 09:10:52 +01:00
..
CVE-2023-23969.patch python3-django: Fix CVE-2023-23969 2025-01-22 19:20:09 -05:00
CVE-2023-31047.patch
CVE-2023-36053.patch
CVE-2023-41164.patch python3-django: fix CVE-2023-41164 2023-09-27 10:23:14 -04:00
CVE-2023-43665.patch python3-django: Fix for CVE-2023-43665 and CVE-2023-46695 2024-01-12 07:14:16 -05:00
CVE-2023-46695.patch python3-django: Fix for CVE-2023-43665 and CVE-2023-46695 2024-01-12 07:14:16 -05:00
CVE-2024-24680.patch python3-django: fix CVE-2024-24680 2024-04-28 13:10:23 -04:00
CVE-2024-27351.patch python3-django: fix CVE-2024-27351 2025-11-30 15:16:29 +01:00
CVE-2024-38875.patch python3-django: Fix CVE-2024-38875 2025-01-22 19:20:02 -05:00
CVE-2024-39329.patch python3-django: fix CVE-2024-39329 2025-11-30 15:16:34 +01:00
CVE-2024-39330.patch python3-django: fix CVE-2024-39330 2025-11-30 15:16:36 +01:00
CVE-2024-39614.patch python3-django: Fix CVE-2024-39614 2025-01-22 19:20:12 -05:00
CVE-2024-41989-0001.patch python3-django: Fix CVE-2024-41989 2025-01-22 19:20:15 -05:00
CVE-2024-41989-0002.patch python3-django: Fix CVE-2024-41989 2025-01-22 19:20:15 -05:00
CVE-2024-41989-0003.patch python3-django: Fix CVE-2024-41989 2025-01-22 19:20:15 -05:00
CVE-2024-41989-0004.patch python3-django: Fix CVE-2024-41989 2025-01-22 19:20:15 -05:00
CVE-2024-41990.patch python3-django: Fix CVE-2024-41990 2025-01-22 19:22:56 -05:00
CVE-2024-41991.patch python3-django: Fix CVE-2024-41991 2025-01-22 19:22:59 -05:00
CVE-2024-42005.patch python3-django: Fix CVE-2024-42005 2024-08-25 18:12:26 -04:00
CVE-2024-45230.patch python3-django: Fix CVE-2024-45230 2025-01-22 19:23:02 -05:00
CVE-2024-45231.patch python3-django: Fix CVE-2024-45231 2025-01-22 19:23:05 -05:00
CVE-2024-53907.patch python3-django: Fix CVE-2024-53907 2025-01-22 19:23:09 -05:00
CVE-2024-56374.patch python3-django: fix CVE-2024-56374 2025-11-30 15:16:31 +01:00
CVE-2025-26699.patch python3-django: fix CVE-2025-26699 2025-11-30 15:16:30 +01:00
CVE-2025-32873.patch python3-django: fix CVE-2025-32873 2025-12-05 15:29:59 +01:00
CVE-2025-57833.patch python3-django: fix CVE-2025-57833 2025-11-30 15:16:32 +01:00
CVE-2025-64459.patch python3-django: fix CVE-2025-64459 2025-12-18 09:10:52 +01:00