python-Django

Edit Package python-Django

Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design.

Refresh
Refresh
Source Files
Filename Size Changed
CVE-2020-13254.patch 0000010390 10.1 KB
CVE-2020-13596.patch 0000003050 2.98 KB
CVE-2021-23336.patch 0000006739 6.58 KB
CVE-2021-28658.patch 0000010480 10.2 KB
CVE-2021-31542.patch 0000017149 16.7 KB
CVE-2021-3281.patch 0000004749 4.64 KB
CVE-2021-33203.patch 0000002585 2.52 KB
CVE-2021-33571.patch 0000005955 5.82 KB
CVE-2021-45115.patch 0000005996 5.86 KB
CVE-2021-45116.patch 0000007355 7.18 KB
CVE-2021-45452.patch 0000006261 6.11 KB
CVE-2022-22818.patch 0000005412 5.29 KB
CVE-2022-23833.patch 0000002503 2.44 KB
CVE-2022-28346.patch 0000006892 6.73 KB
CVE-2022-34265.patch 0000005209 5.09 KB
CVE-2023-24580-DOS_file_upload.patch 0000015682 15.3 KB
CVE-2023-36053.patch 0000007462 7.29 KB
CVE-2023-41164.patch 0000003232 3.16 KB
CVE-2023-43665.patch 0000004793 4.68 KB
CVE-2024-24680.patch 0000007482 7.31 KB
Django-1.11.29.tar.gz 0007977916 7.61 MB
Django-1.11.29.tar.gz.checksums.txt 0000002499 2.44 KB
python-Django-rpmlintrc 0000000214 214 Bytes
python-Django.changes 0000077354 75.5 KB
python-Django.keyring 0000017951 17.5 KB
python-Django.spec 0000005773 5.64 KB
Latest Revision
Gayane Osipyan's avatar Gayane Osipyan (gosipyan) accepted request 1146450 from Guang Yee's avatar Guang Yee (yeey) (revision 18)
- Add CVE-2024-24680.patch (bsc#1219683, CVE-2024-24680)

- Add CVE-2023-43665.patch (bsc#1215978, CVE-2023-43665)
  * Denial-of-service possibility in django.utils.text.Truncator

- Add CVE-2023-41164.patch (bsc#1214667, CVE-2023-41164)
    * Potential denial of service vulnerability
      in django.utils.encoding.uri_to_iri()

- Add CVE-2023-36053.patch (bsc#1212742, CVE-2023-36053)

- Add CVE-2023-24580-DOS_file_upload.patch (CVE-2023-24580,
  bsc#1208082) to prevent DOS in file uploads.

- Rename Django-1.11.29.tar.gz.asc to Django-1.11.29.tar.gz.checksums.txt
  to avoid source_validator incorrectly trying to use it as a detached
  signature file for the sources tarball.
- Remove unnecessary project.diff file.

- Add CVE-2022-28346.patch (bsc#1198398, CVE-2022-28346)
    * Potential SQL injection in QuerySet.annotate(),aggregate() and extra()
- Add CVE-2022-34265.patch (bsc#1201186, CVE-2022-34265)
    * SQL injection via Trunc(kind) and Extract(lookup_name) arguments

- CVE-2021-45452.patch: added missing attribute to validate_file_name (bsc#1194116)

- Add CVE-2022-22818.patch (bsc#1195086, CVE-2022-22818)
    * Possible XSS via ``{% debug %}`` template tag
- Add CVE-2022-23833.patch (bsc#1195088, CVE-2022-23833)
    * Denial-of-service possibility in file uploads
Comments 0
openSUSE Build Service is sponsored by