[4.2.x] Added CVE-2023-41164 to security archive.

Backport of 8a98768868 from main
This commit is contained in:
Mariusz Felisiak 2023-09-04 13:09:48 +02:00
parent a9686cb871
commit a1dd785139
1 changed files with 11 additions and 0 deletions

View File

@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security
process. These are listed below.
September 4, 2023 - :cve:`2023-41164`
-------------------------------------
Potential denial of service vulnerability in
``django.utils.encoding.uri_to_iri()``. `Full description
<https://www.djangoproject.com/weblog/2023/sep/04/security-releases/>`__
* Django 4.2 :commit:`(patch) <9c51b4dcfa0cefcb48231f4d71cafa80821f87b9>`
* Django 4.1 :commit:`(patch) <ba00bc5ec6a7eff5e08be438f7b5b0e9574e8ff0>`
* Django 3.2 :commit:`(patch) <6f030b1149bd8fa4ba90452e77cb3edc095ce54e>`
July 3, 2023 - :cve:`2023-36053`
--------------------------------