Request 1117946: Submit python-Django - openSUSE Build Service

Overview

Request 1117946 accepted

- Update to 4.2.6 (bsc#1215978, CVE-2023-43665)
* CVE-2023-43665: Denial-of-service possibility in
django.utils.text.Truncator
The input processed by Truncator, when operating in HTML mode, has
been limited to the first five million characters in order to
avoid potential performance and memory issues.
* Fixed a regression in Django 4.2.5 where overriding the deprecated
DEFAULT_FILE_STORAGE and STATICFILES_STORAGE settings in tests
caused the main STORAGES to mutate (#34821).
* Fixed a regression in Django 4.2 that caused unnecessary casting
of string based fields (CharField, EmailField, TextField,
CICharField, CIEmailField, and CITextField) used with the __isnull
lookup on PostgreSQL. As a consequence, indexes using an __isnull
expression or condition created before Django 4.2 wouldn’t be used
by the query planner, leading to a performance regression
(#34840).

Created by dgarcia about 1 year ago
In state accepted

Submit python-Django

Comments for request 1117946 0

Login required, please login in order to comment

Request History

dgarcia created request about 1 year ago

- Update to 4.2.6 (bsc#1215978, CVE-2023-43665)
* CVE-2023-43665: Denial-of-service possibility in
django.utils.text.Truncator
The input processed by Truncator, when operating in HTML mode, has
been limited to the first five million characters in order to
avoid potential performance and memory issues.
* Fixed a regression in Django 4.2.5 where overriding the deprecated
DEFAULT_FILE_STORAGE and STATICFILES_STORAGE settings in tests
caused the main STORAGES to mutate (#34821).
* Fixed a regression in Django 4.2 that caused unnecessary casting
of string based fields (CharField, EmailField, TextField,
CICharField, CIEmailField, and CITextField) used with the __isnull
lookup on PostgreSQL. As a consequence, indexes using an __isnull
expression or condition created before Django 4.2 wouldn’t be used
by the query planner, leading to a performance regression
(#34840).

anag+factory set openSUSE:Factory:Staging:C as a staging project about 1 year ago

Being evaluated by staging project "openSUSE:Factory:Staging:C"

anag+factory accepted review about 1 year ago

Picked "openSUSE:Factory:Staging:C"

factory-auto added opensuse-review-team as a reviewer about 1 year ago

Please review sources

factory-auto accepted review about 1 year ago

Check script succeeded

licensedigger accepted review about 1 year ago

ok

anag+factory added factory-staging as a reviewer about 1 year ago

Being evaluated by group "factory-staging"

anag+factory accepted review about 1 year ago

Unstaged from project "openSUSE:Factory:Staging:C"

anag+factory set openSUSE:Factory:Staging:E as a staging project about 1 year ago

Being evaluated by staging project "openSUSE:Factory:Staging:E"

anag+factory accepted review about 1 year ago

Picked "openSUSE:Factory:Staging:E"

darix accepted review about 1 year ago

Accepted review for by_group opensuse-review-team request 1117946 from user anag+factory

anag+factory accepted review about 1 year ago

Staging Project openSUSE:Factory:Staging:E got accepted.

anag+factory approved review about 1 year ago

Staging Project openSUSE:Factory:Staging:E got accepted.

anag+factory accepted request about 1 year ago

Staging Project openSUSE:Factory:Staging:E got accepted.

openSUSE Build Service is sponsored by