[ubuntu/questing-proposed] python-django 3:5.2.4-1ubuntu1 (Accepted)
Leonidas Da Silva Barbosa
leo.barbosa at canonical.com
Mon Sep 15 17:51:20 UTC 2025
python-django (3:5.2.4-1ubuntu1) questing; urgency=medium
* SECURITY UPDATE: SQL injection
- debian/patches/CVE-2025-57833.patch: protected
FilteredRelation against SQL injection in column
aliases in django/db/models/sql/query.py,
tests/annotations/tests.py.
- debian/patches/fixing_test_stip_tags.patch: Adjusted
utils_tests.test_html.TestUtilsHtml.test_strip_tags following Python's
HTMLParser new behavior in tests/utils_test/test_html.py.
- debian/patches/fixing_test_parsing_errors.patch: Fixed
test_utils.tests.HTMLEqualTests.test_parsing_errors
following Python's HTMLParser fixed parsing in
tests/test_utils/tests.py.
- CVE-2025-57833
Date: Mon, 15 Sep 2025 09:13:25 -0300
Changed-By: Leonidas Da Silva Barbosa <leo.barbosa at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/python-django/3:5.2.4-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Mon, 15 Sep 2025 09:13:25 -0300
Source: python-django
Built-For-Profiles: noudeb
Architecture: source
Version: 3:5.2.4-1ubuntu1
Distribution: questing
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas Da Silva Barbosa <leo.barbosa at canonical.com>
Changes:
python-django (3:5.2.4-1ubuntu1) questing; urgency=medium
.
* SECURITY UPDATE: SQL injection
- debian/patches/CVE-2025-57833.patch: protected
FilteredRelation against SQL injection in column
aliases in django/db/models/sql/query.py,
tests/annotations/tests.py.
- debian/patches/fixing_test_stip_tags.patch: Adjusted
utils_tests.test_html.TestUtilsHtml.test_strip_tags following Python's
HTMLParser new behavior in tests/utils_test/test_html.py.
- debian/patches/fixing_test_parsing_errors.patch: Fixed
test_utils.tests.HTMLEqualTests.test_parsing_errors
following Python's HTMLParser fixed parsing in
tests/test_utils/tests.py.
- CVE-2025-57833
Checksums-Sha1:
cd83865e366777e833b457b2ec910ddb3f0115f1 2892 python-django_5.2.4-1ubuntu1.dsc
4a81e5790774d5b476615de00401e351b0093d07 32632 python-django_5.2.4-1ubuntu1.debian.tar.xz
02ec899e579cbec07e41dcb5a0766659d62e1ce8 17408 python-django_5.2.4-1ubuntu1_source.buildinfo
Checksums-Sha256:
07b5729a36b9a611a7eedd79c46190eedcf04c82cb827c648661db1388f28f38 2892 python-django_5.2.4-1ubuntu1.dsc
8334ca20349b043d7fe5d9fc1e7829864cb6de636c69c6cf5a950fc40202776e 32632 python-django_5.2.4-1ubuntu1.debian.tar.xz
d9497055ffe1aece22274e2dbffed41329f64c15545a3c6a6674456eeca6cade 17408 python-django_5.2.4-1ubuntu1_source.buildinfo
Files:
a964a3be0d72583e2f78b85a39683adf 2892 python optional python-django_5.2.4-1ubuntu1.dsc
f511ca693310bdb02520bbc96adc37f8 32632 python optional python-django_5.2.4-1ubuntu1.debian.tar.xz
f1fe196c59f1ff49115a3542cb12b993 17408 python optional python-django_5.2.4-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Python Team <team+python at tracker.debian.org>
More information about the Questing-changes
mailing list