MIRRORS/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-01-27 12:01:38 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
ac06a65404
meta-openembedded/meta-python/recipes-devtools/python/python3-django
History
Rahul Janani Pandi ac06a65404 python3-django: fix CVE-2024-24680 
An issue was discovered in Django 3.2 before 3.2.24, 4.2 before 4.2.10,
and Django 5.0 before 5.0.2. The intcomma template filter was subject
to a potential denial-of-service attack when used with very long strings.

Since, there is no ptest available for python3-django so have not
tested the patch changes at runtime.

References:
https://security-tracker.debian.org/tracker/CVE-2024-24680
https://docs.djangoproject.com/en/dev/releases/4.2.10/

Signed-off-by: Rahul Janani Pandi <RahulJanani.Pandi@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2024-04-28 13:10:23 -04:00
..
CVE-2023-31047.patch
CVE-2023-36053.patch
CVE-2023-41164.patch python3-django: fix CVE-2023-41164 2023-09-27 10:23:14 -04:00
CVE-2023-43665.patch python3-django: Fix for CVE-2023-43665 and CVE-2023-46695 2024-01-12 07:14:16 -05:00
CVE-2023-46695.patch python3-django: Fix for CVE-2023-43665 and CVE-2023-46695 2024-01-12 07:14:16 -05:00
CVE-2024-24680.patch python3-django: fix CVE-2024-24680 2024-04-28 13:10:23 -04:00