[ubuntu/mantic-proposed] python-django 3:3.2.20-1ubuntu1 (Accepted)

Tue Jul 4 07:53:15 UTC 2023

python-django (3:3.2.20-1ubuntu1) mantic; urgency=low

  * Merge from Debian unstable. Remaining changes:
    - Cherry-pick upstream commit to fix URLValidator crash in
      some edge cases (LP: #2025155)

python-django (3:3.2.20-1) unstable; urgency=high

  * New upstream security release:

    - CVE-2023-36053: Potential regular expression denial of service
      vulnerability in EmailValidator/URLValidator.

      EmailValidator and URLValidator were subject to potential regular
      expression denial of service attack via a very large number of domain
      name labels of emails and URLs. (Closes: #1040225)

Date: Tue, 04 Jul 2023 09:31:10 +0200
Changed-By: Gianfranco Costamagna <locutusofborg at debian.org>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/python-django/3:3.2.20-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Tue, 04 Jul 2023 09:31:10 +0200
Source: python-django
Built-For-Profiles: noudeb
Architecture: source
Version: 3:3.2.20-1ubuntu1
Distribution: mantic
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Gianfranco Costamagna <locutusofborg at debian.org>
Closes: 1040225
Launchpad-Bugs-Fixed: 2025155
Changes:
 python-django (3:3.2.20-1ubuntu1) mantic; urgency=low
 .
   * Merge from Debian unstable. Remaining changes:
     - Cherry-pick upstream commit to fix URLValidator crash in
       some edge cases (LP: #2025155)
 .
 python-django (3:3.2.20-1) unstable; urgency=high
 .
   * New upstream security release:
 .
     - CVE-2023-36053: Potential regular expression denial of service
       vulnerability in EmailValidator/URLValidator.
 .
       EmailValidator and URLValidator were subject to potential regular
       expression denial of service attack via a very large number of domain
       name labels of emails and URLs. (Closes: #1040225)
Checksums-Sha1:
 92fac64032274cf0eb360ff3d3851cf177e4ebb2 2914 python-django_3.2.20-1ubuntu1.dsc
 5f208fb1af0f587fad0d8efddcdeded2edd133c7 39088 python-django_3.2.20-1ubuntu1.debian.tar.xz
 96d35b1f4c7545a0906d5a0a1e50204cc3318a4e 11566 python-django_3.2.20-1ubuntu1_source.buildinfo
Checksums-Sha256:
 12b0a69c55da3045a262fc4ad051765d7d74b9f3cd353bf6f7ed25e295ad7d53 2914 python-django_3.2.20-1ubuntu1.dsc
 1d3487cd5be4476600bb7737773695c76d0ecefd8e6f75704b9e259b87db8ec2 39088 python-django_3.2.20-1ubuntu1.debian.tar.xz
 38a8c45afb8fab827ccb1d2bc9877cd29a346d781cabc66b3620db0e20cb522a 11566 python-django_3.2.20-1ubuntu1_source.buildinfo
Files:
 2a532c186a5acc543e0cac5c9c0a49e0 2914 python optional python-django_3.2.20-1ubuntu1.dsc
 2e92562279e15694c4d9e81d9cb17c95 39088 python optional python-django_3.2.20-1ubuntu1.debian.tar.xz
 6b5fdd1d8d1dcebec9bc54800625b5a6 11566 python optional python-django_3.2.20-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Python Team <team+python at tracker.debian.org>