[ubuntu/plucky-security] python-django 3:4.2.18-1ubuntu1.6 (Accepted)
Hlib Korzhynskyy
hlib.korzhynskyy at canonical.com
Wed Nov 5 15:10:55 UTC 2025
python-django (3:4.2.18-1ubuntu1.6) plucky-security; urgency=medium
* SECURITY UPDATE: Potential SQL injection in QuerySet and Q objects
- debian/patches/CVE-2025-62769-1.patch: Add connects and checks for them
in django/db/models/query_utils.py.
- debian/patches/CVE-2025-62769-2.patch: Add PROHIBITED_FILTER_KWARGS and
check for them in django/db/models/query.py.
- CVE-2025-62769
Date: 2025-10-30 14:05:12.152463+00:00
Changed-By: Hlib Korzhynskyy <hlib.korzhynskyy at canonical.com>
https://launchpad.net/ubuntu/+source/python-django/3:4.2.18-1ubuntu1.6
-------------- next part --------------
Sorry, changesfile not available.
More information about the plucky-changes
mailing list