MIRRORS/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-04-02 16:29:36 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
be168328f8
meta-openembedded/meta-python/recipes-devtools/python/python3-django
History
Soumya Sambu be168328f8 python3-django: Fix CVE-2024-45231 
An issue was discovered in Django v5.1.1, v5.0.9, and v4.2.16. The
django.contrib.auth.forms.PasswordResetForm class, when used in a view
implementing password reset flows, allows remote attackers to enumerate
user e-mail addresses by sending password reset requests and observing
the outcome (only when e-mail sending is consistently failing).

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2024-45231

Upstream-patch:
bf4888d317

Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
2025-01-22 19:23:05 -05:00
..
CVE-2023-23969.patch python3-django: Fix CVE-2023-23969 2025-01-22 19:20:09 -05:00
CVE-2023-31047.patch python3-django: fix for CVE-2023-31047 2023-06-17 13:49:44 -04:00
CVE-2023-36053.patch python3-django: fix CVE-2023-36053 2023-08-25 10:45:34 -04:00
CVE-2023-41164.patch python3-django: fix CVE-2023-41164 2023-09-27 10:23:14 -04:00
CVE-2023-43665.patch python3-django: Fix for CVE-2023-43665 and CVE-2023-46695 2024-01-12 07:14:16 -05:00
CVE-2023-46695.patch python3-django: Fix for CVE-2023-43665 and CVE-2023-46695 2024-01-12 07:14:16 -05:00
CVE-2024-24680.patch python3-django: fix CVE-2024-24680 2024-04-28 13:10:23 -04:00
CVE-2024-38875.patch python3-django: Fix CVE-2024-38875 2025-01-22 19:20:02 -05:00
CVE-2024-39614.patch python3-django: Fix CVE-2024-39614 2025-01-22 19:20:12 -05:00
CVE-2024-41989-0001.patch python3-django: Fix CVE-2024-41989 2025-01-22 19:20:15 -05:00
CVE-2024-41989-0002.patch python3-django: Fix CVE-2024-41989 2025-01-22 19:20:15 -05:00
CVE-2024-41989-0003.patch python3-django: Fix CVE-2024-41989 2025-01-22 19:20:15 -05:00
CVE-2024-41989-0004.patch python3-django: Fix CVE-2024-41989 2025-01-22 19:20:15 -05:00
CVE-2024-41990.patch python3-django: Fix CVE-2024-41990 2025-01-22 19:22:56 -05:00
CVE-2024-41991.patch python3-django: Fix CVE-2024-41991 2025-01-22 19:22:59 -05:00
CVE-2024-42005.patch python3-django: Fix CVE-2024-42005 2024-08-25 18:12:26 -04:00
CVE-2024-45230.patch python3-django: Fix CVE-2024-45230 2025-01-22 19:23:02 -05:00
CVE-2024-45231.patch python3-django: Fix CVE-2024-45231 2025-01-22 19:23:05 -05:00