[ubuntu/questing-security] python-django 3:5.2.4-1ubuntu2.1 (Accepted)
Hlib Korzhynskyy
hlib.korzhynskyy at canonical.com
Wed Nov 5 15:10:53 UTC 2025
python-django (3:5.2.4-1ubuntu2.1) questing-security; urgency=medium
* SECURITY UPDATE: Potential SQL injection in QuerySet and Q objects
- debian/patches/CVE-2025-62769-1.patch: Add connects and checks for them
in django/db/models/query_utils.py.
- debian/patches/CVE-2025-62769-2.patch: Add PROHIBITED_FILTER_KWARGS and
check for them in django/db/models/query.py.
- CVE-2025-62769
Date: 2025-10-30 13:45:12.476133+00:00
Changed-By: Hlib Korzhynskyy <hlib.korzhynskyy at canonical.com>
https://launchpad.net/ubuntu/+source/python-django/3:5.2.4-1ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list