From e9a24a15f2cdd6b4768ea7b45cd6b1758fb4ed48 Mon Sep 17 00:00:00 2001 From: Carlton Gibson Date: Tue, 4 Oct 2022 10:12:11 +0200 Subject: [PATCH] [4.1.x] Added CVE-2022-36359 to security archive. Backport of 93d4c9ea1de24eb391cb2b3561b6703fd46374df from main --- docs/releases/security.txt | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/docs/releases/security.txt b/docs/releases/security.txt index f039379e0e..940f91fa0f 100644 --- a/docs/releases/security.txt +++ b/docs/releases/security.txt @@ -36,6 +36,17 @@ Issues under Django's security process All security issues have been handled under versions of Django's security process. These are listed below. +October 4, 2022 - :cve:`2022-41323` +----------------------------------- + +Potential denial-of-service vulnerability in internationalized URLs. `Full +description +`__ + +* Django 4.1 :commit:`(patch) <9d656ea51d9ea7105c0c0785783ac29d426a7d25>` +* Django 4.0 :commit:`(patch) <23f0093125ac2e553da6c1b2f9988eb6a3dd2ea1>` +* Django 3.2 :commit:`(patch) <5b6b257fa7ec37ff27965358800c67e2dd11c924>` + August 3, 2022 - :cve:`2022-36359` ----------------------------------