p31829507
/
django
mirror of https://github.com/django/django.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

[2.1.x] Added CVE-2019-11358 to the security release archive. 

Backport of 8fb0ea5583 from master
This commit is contained in:
Nick Pope 2019-06-03 20:15:59 +01:00 committed by Carlton Gibson
parent 73158f19f1
commit 8827e09944
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
docs/releases/security.txt
View File

@ -936,3 +936,15 @@ Versions affected
* Django 2.0 :commit:`(patch <1f42f82566c9d2d73aff1c42790d6b1b243f7676>` and
:commit:`correction) <392e040647403fc8007708d52ce01d915b014849>`
* Django 1.11 :commit:`(patch) <0bbb560183fabf0533289700845dafa94951f227>`
June 3, 2019 - :cve:`2019-11358`
--------------------------------
Prototype pollution in bundled jQuery. `Full description
<https://www.djangoproject.com/weblog/2019/jun/03/security-releases/>`__
Versions affected
~~~~~~~~~~~~~~~~~
* Django 2.2 :commit:`(patch) <baaf187a4e354bf3976c51e2c83a0d2f8ee6e6ad>`
* Django 2.1 :commit:`(patch) <95649bc08547a878cebfa1d019edec8cb1b80829>`