-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Mon, 26 May 2025 01:50:04 +0100 Source: python-django Architecture: source Version: 3:4.2.21-1~bpo12+1 Distribution: bookworm-backports Urgency: medium Maintainer: Debian Python Team <team+python@tracker.debian.org> Changed-By: Colin Watson <cjwatson@debian.org> Closes: 1104872 Changes: python-django (3:4.2.21-1~bpo12+1) bookworm-backports; urgency=medium . * Rebuild for bookworm-backports. . python-django (3:4.2.21-1) unstable; urgency=medium . * New upstream security release: . - CVE-2025-32873: Denial-of-service possibility in strip_tags() . django.utils.html.strip_tags() would be slow to evaluate certain inputs containing large sequences of incomplete HTML tags. This function is used to implement the striptags template filter, which was therefore also vulnerable. strip_tags() now raises a SuspiciousOperation exception if it encounters an unusually large number of unclosed opening tags. . (Closes: #1104872) . <https://www.djangoproject.com/weblog/2025/may/07/security-releases/> . * Bump Standards-Version to 4.7.2. * Add pybuild-plugin-pyproject to Build-Depends. Checksums-Sha1: 271872af37bb9ae66f45f35f1b9b5bd2fd4bc731 2951 python-django_4.2.21-1~bpo12+1.dsc 29453a9932c6b707b3ac0abe51eee63d998bde84 33680 python-django_4.2.21-1~bpo12+1.debian.tar.xz Checksums-Sha256: ef0781a274f67eb096904a7cfe368c3baaa8d565e244760b43f33daa149df8ff 2951 python-django_4.2.21-1~bpo12+1.dsc 016bb701b2615e3491ed0010e9a079cbe485b1f14b92641c49669d7745e442b1 33680 python-django_4.2.21-1~bpo12+1.debian.tar.xz Files: 2ff282f1744948bebf15e20f168f7a26 2951 python optional python-django_4.2.21-1~bpo12+1.dsc 69bb71cf8a73a64be6348e1d005c5734 33680 python optional python-django_4.2.21-1~bpo12+1.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEErApP8SYRtvzPAcEROTWH2X2GUAsFAmgzvQIACgkQOTWH2X2G UAvKGxAAoINBmtkCwZOzP8DrVcgPLTCqKC54CspFhahM3qRAeFpL5Vs9hzkSRzww YRi1qLy+/HQ/I4rfCbkGxdph6VlYMYbkuFoO9bIOcTkfRM/OJq4K/RkKVZq+ha1z v7xd5k6zDT1tn4uOOg6FNZ0yXpe38Bl/oKL6ENsn8YTiQUrjyXroV+k+sZSTtR7u lZrBjl8IEdsQPuBClA1op7ybpRHpUGGq33FpGfUNDO6Y5vZ31LKoDnpMr+aO/XNI DhZ75mYGoY1GZvJjNoFPW5UqUlnqj0HtHm/7UlLc4OvFDyIwrRsv4yzCg5eGBYyq FcO/sBgEfgE38k7KCZd7GdmVdbkcPOP9wfKdC2mBCzxDr0ru2OBy3FVajXmEfMBj jzuG7+8my3vm8fxvVNOo3iTJxwH9FSBDQ2v58kB09MLXLPI8zGureA/+zjEgB/ci j3SomcHpTxT6inlUHvRpLGkzZZ+/gfxB0PD6y0YFNkpCMNFzeoXd/OnUYtSHMOh5 20zTkSohVb4mIf3RgUfgKZ2jT+L4hdnwSXKiG/SOQv0vn43B9ZBOu/Zhi26NBoUX V9CBWafBOiS4K1DEySFby+BUkCpSSFW1b0/EQx+iFEoVkBLG+8VcvvqdXHcMxdGN pV26hZPfF5sG2jw1UXQ1nLRpsWEnVnYiG1au6Muen1Qul892gK8= =HFaz -----END PGP SIGNATURE-----