Package "python3-django"

Name:	python3-django
Description:	High-level Python web development framework
Latest version:	3:4.2.15-1ubuntu1.2
Release:	oracular (24.10)
Level:	security
Repository:	main
Head package:	python-django
Homepage:	http://www.djangoproject.com/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "python3-django"

All arch deb package

APT INSTALL

Other versions of "python3-django" in Oracular

Repository	Area	Version
base	main	3:4.2.15-1ubuntu1
updates	main	3:4.2.15-1ubuntu1.2

Changelog

Version: 3:4.2.15-1ubuntu1.2 2025-01-14 19:06:56 UTC

Version: 3:4.2.15-1ubuntu1.2	2025-01-14 19:06:56 UTC
python-django (3:4.2.15-1ubuntu1.2) oracular-security; urgency=medium * SECURITY UPDATE: Denial of service - debian/patches/CVE-2024-56374.patch: mitigate potential DoS in IPv6 validation in django/db/models/fields/__init__.py. django/forms/fields.py, django/utils/ipv6.py, field_tests/test_genericipaddressfield.py, tests/utils_tests/test_ipv6.py. - CVE-2024-56374 -- Leonidas Da Silva Barbosa <email address hidden> Wed, 08 Jan 2025 07:51:26 -0300
Source diff to previous version

python-django (3:4.2.15-1ubuntu1.2) oracular-security; urgency=medium * SECURITY UPDATE: Denial of service - debian/patches/CVE-2024-56374.patch: mitigate potential DoS in IPv6 validation in django/db/models/fields/__init__.py. django/forms/fields.py, django/utils/ipv6.py, field_tests/test_genericipaddressfield.py, tests/utils_tests/test_ipv6.py. - CVE-2024-56374 -- Leonidas Da Silva Barbosa <email address hidden> Wed, 08 Jan 2025 07:51:26 -0300

Source diff to previous version

Version: 3:4.2.15-1ubuntu1.1 2024-12-04 20:07:08 UTC

python-django (3:4.2.15-1ubuntu1.1) oracular-security; urgency=medium * SECURITY UPDATE: Potential denial-of-service in django.utils.html.strip_tags() - debian/patches/CVE-2024-53907.patch: mitigated potential DoS in strip_tags() in django/utils/html.py, tests/utils_tests/test_html.py. - CVE-2024-53907 * SECURITY UPDATE: Potential SQL injection in HasKey(lhs, rhs) on Oracle - debian/patches/CVE-2024-53908.patch: prevented SQL injections in direct HasKeyLookup usage on Oracle in django/db/models/fields/json.py, tests/model_fields/test_jsonfield.py. - CVE-2024-53908 -- Marc Deslauriers <email address hidden> Wed, 27 Nov 2024 07:55:49 -0500

CVE-2024-53907	Potential denial-of-service in django.utils.html.strip_tags()
CVE-2024-53908	Potential SQL injection in HasKey(lhs, rhs) on Oracle

About - Send Feedback to @ubuntu_updates

Package "python3-django"

Links

Download "python3-django"

Other versions of "python3-django" in Oracular

Changelog

Share this page

Bookmarks

Latest updates

proposed

updates

security

PPA updates