blob: 9829ccce234883657cd09a7c6255a1248dcf3a46 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
<define-tag description>security update</define-tag>
<define-tag moreinfo>
<p>Simon Charette discovered that Django, a high-level Python web
development framework, did not properly handle input in its PostgreSQL
module. A remote attacker could leverage this to perform SQL injection
attacks.</p>
<p>For the oldstable distribution (stretch), this problem has been fixed
in version 1:1.10.7-2+deb9u8.</p>
<p>For the stable distribution (buster), this problem has been fixed in
version 1:1.11.28-1~deb10u1.</p>
<p>We recommend that you upgrade your python-django packages.</p>
<p>For the detailed security status of python-django please refer to
its security tracker page at:
<a href="https://security-tracker.debian.org/tracker/python-django">\
https://security-tracker.debian.org/tracker/python-django</a></p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/security/2020/dsa-4629.data"
# $Id: $
|