Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted python-django 2:2.2.28-1~deb11u3 (source) into oldstable-security
Date: Tue, 31 Dec 2024 15:10:20 +0000
Signed by: Chris Lamb <lamby@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 31 Dec 2024 14:51:40 +0000
Source: python-django
Built-For-Profiles: nocheck
Architecture: source
Version: 2:2.2.28-1~deb11u3
Distribution: bullseye-security
Urgency: high
Maintainer: Debian Python Team <team+python@tracker.debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Changes:
 python-django (2:2.2.28-1~deb11u3) bullseye-security; urgency=high
 .
   * CVE-2024-53907: Potential DoS in django.utils.html.strip_tags.
     The strip_tags() method and striptags template filter were subject to a
     potential denial-of-service attack via certain inputs containing large
     sequences of nested incomplete HTML entities.
Checksums-Sha1:
 727deaf79af90d9190c5a6b1aa0541067b87511e 2811 python-django_2.2.28-1~deb11u3.dsc
 0661bddaeca016d84abc4c808c1c677cd7d4aa7b 9187543 python-django_2.2.28.orig.tar.gz
 a607734df1a8c50df15dcfdeb9a2dd101751fe8e 42788 python-django_2.2.28-1~deb11u3.debian.tar.xz
 1d65a8cc607f3ca9bcb70e3115b17fc32a7d0b6d 8287 python-django_2.2.28-1~deb11u3_amd64.buildinfo
Checksums-Sha256:
 80d7377b1f318c30b4f35e594834230828d09cc7c3105f58e8da915334361566 2811 python-django_2.2.28-1~deb11u3.dsc
 0200b657afbf1bc08003845ddda053c7641b9b24951e52acd51f6abda33a7413 9187543 python-django_2.2.28.orig.tar.gz
 585b88e78336d15b3ed07999ac2f09169f62f0c142e3376cf45d805ca20e0c39 42788 python-django_2.2.28-1~deb11u3.debian.tar.xz
 fdad4a5f66221432bbc07466bcd7f82b01b75469983acccfbba181988d498c55 8287 python-django_2.2.28-1~deb11u3_amd64.buildinfo
Files:
 a6ce3235e1d284b49fe5cc3b8e980f68 2811 python optional python-django_2.2.28-1~deb11u3.dsc
 62550f105ef66ac7d08e0126f457578a 9187543 python optional python-django_2.2.28.orig.tar.gz
 367e68816ede5340e71e05b0cca3d5b3 42788 python optional python-django_2.2.28-1~deb11u3.debian.tar.xz
 251818cc73dd3b8addc7996ab2ba0cd1 8287 python optional python-django_2.2.28-1~deb11u3_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=DmIX
-----END PGP SIGNATURE-----

News for package python-django