-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 06 Feb 2024 08:08:50 -0800 Source: python-django Built-For-Profiles: nocheck Architecture: source Version: 3:5.0.2-1 Distribution: experimental Urgency: medium Maintainer: Debian Python Team <team+python@tracker.debian.org> Changed-By: Chris Lamb <lamby@debian.org> Changes: python-django (3:5.0.2-1) experimental; urgency=medium . * New upstream security release: . - CVE-2024-24680: Potential denial-of-service in intcomma template filter. The intcomma template filter was subject to a potential denial-of-service attack when used with very long strings. . <https://docs.djangoproject.com/en/dev/releases/5.0.2/> Checksums-Sha1: e8db32fe973d3196f6712dfd17148cd38589d8a9 2757 python-django_5.0.2-1.dsc f8cdb7219c02b48075742cb18d717f2c51b0af6e 10619702 python-django_5.0.2.orig.tar.gz a669770e09e1540480025ebe83d6ddaac2b1287c 28968 python-django_5.0.2-1.debian.tar.xz 4aed69137c1e088a78ace6b56ff4dbb52b86252c 8058 python-django_5.0.2-1_amd64.buildinfo Checksums-Sha256: fc014dfdf5e83383271a98672561a32c52a424c90d63ee79f6c5dc28ef85641c 2757 python-django_5.0.2-1.dsc b5bb1d11b2518a5f91372a282f24662f58f66749666b0a286ab057029f728080 10619702 python-django_5.0.2.orig.tar.gz d092dd3ba876d6a7eeef314f47193af7f3c2914efd04199ad386cde06faa73f5 28968 python-django_5.0.2-1.debian.tar.xz e840bbdbb3ba986f23139ed71acef292441847efbffd04a00dc72bf47bb3bf62 8058 python-django_5.0.2-1_amd64.buildinfo Files: ad95ff12888ba41f8def73203d7d029a 2757 python optional python-django_5.0.2-1.dsc 5d0df847e1b751a4a5d2bde1563c75fc 10619702 python optional python-django_5.0.2.orig.tar.gz 3486782f1c9113fd4c042de396534447 28968 python optional python-django_5.0.2-1.debian.tar.xz 3dfeabc7d104a7295fde0f5622ba079c 8058 python optional python-django_5.0.2-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmXCWr4ACgkQHpU+J9Qx HlgmnhAAgTY3A9nEanoD9F9VzVKlyTBgD+ndSUuArd+De39nafAQaYvdHn7TH3JG M90G/sDUGJUOWCbHmouF5dtZJ+ZqSwNqpHFgslhWmTbkGGQt7q3uFfo8IcEU1V6O N7Jd0xqR6I+Q/R5yTzIc9sPJsy8FGJmGbg3Jn3DHzmYmGgIlvRMe13UaBSr6OgA5 zPdqypUEyUq7CCPWDaqHzIfUbLBQmJ0Nh/KC6HTIr1vHxRKFghYQHkjkPLD8EI10 smAxkO/bdUSi2JPlWBAM5RN06bDc06GfAmriRwKRAgjI+J67dpSSsU/JFkMryzWW 5+r7L8VApjR4ym6W22j57DJo6caS1bYgJ6rBgOk/GrqGtvpK9KUiSOQdSOls2sQs zFWy+jEYxYMv44bFoZsODhUCr6GqvNaasGMdPRw5Tlmt+GYc7g2LHTA9XHM52BAA R5/9rGcJN7lR5G5XeNTPb8wT3q25UcURxsltga9YPpMCLl1h5iaHo7fqxJld3eUv LxP9nDObaTu7Z/2enin3NDILHAXJcgOGY+CFSS3unqUkfPMxTnfOsOxiaJqnvXJ2 vQGwDk8ciHHWBzTte46FJznzLM51aLYTXt3lTEw5zPZs1Xc/27ukbJL77NyWBOSN JQZqh3AziEg4uZCvRNkCnVLC56uDnwmjBDDCP8AuGKrD8s71sSc= =3PI+ -----END PGP SIGNATURE-----