python3-django: Fix CVE-2024-41991 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Soumya Sambu <soumya.sambu@windriver.com>	2025-01-10 13:17:59 +0000
committer	Armin Kuster <akuster808@gmail.com>	2025-01-22 19:22:59 -0500
commit	aa9e8a5557adbd25b5ebaa090c0843dc6b042f1d (patch)
tree	ebcb7c4021c4d9d06ab55174e3847a6901661149 /meta-python/recipes-devtools/python/python3-django/CVE-2024-45230.patch
parent	4e8fa78778944fa005ee94a7346a4d0d9e2c7405 (diff)
download	meta-openembedded-aa9e8a5557adbd25b5ebaa090c0843dc6b042f1d.tar.gz

python3-django: Fix CVE-2024-41991

An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize and urlizetrunc template filters, and the AdminURLFieldWidget widget, are subject to a potential denial-of-service attack via certain inputs with a very large number of Unicode characters. Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-41991 Upstream-patch: https://github.com/django/django/commit/efea1ef7e2190e3f77ca0651b5458297bc0f6a9f Signed-off-by: Soumya Sambu <soumya.sambu@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-django/CVE-2024-45230.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: