From 36e3eef7d5a4c88671d20a561788679d0d9c334c Mon Sep 17 00:00:00 2001 From: Mariusz Felisiak Date: Wed, 1 Feb 2023 12:09:03 +0100 Subject: [PATCH] Added CVE-2023-23969 to security archive. --- docs/releases/security.txt | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/docs/releases/security.txt b/docs/releases/security.txt index 940f91fa0fb..0023fed03fd 100644 --- a/docs/releases/security.txt +++ b/docs/releases/security.txt @@ -36,6 +36,16 @@ Issues under Django's security process All security issues have been handled under versions of Django's security process. These are listed below. +February 1, 2023 - :cve:`2023-23969` +------------------------------------ + +Potential denial-of-service via ``Accept-Language`` headers. `Full description +`__ + +* Django 4.1 :commit:`(patch) <9d7bd5a56b1ce0576e8e07a8001373576d277942>` +* Django 4.0 :commit:`(patch) <4452642f193533e288a52c02efb5bbc766a68f95>` +* Django 3.2 :commit:`(patch) ` + October 4, 2022 - :cve:`2022-41323` -----------------------------------