[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2025-32873/python-django via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sun May 11 16:31:39 BST 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2a65302c by Salvatore Bonaccorso at 2025-05-11T17:30:59+02:00
Track fixed version for CVE-2025-32873/python-django via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1443,7 +1443,7 @@ CVE-2020-36791 (In the Linux kernel, the following vulnerability has been resolv
- linux 5.5.17-1
NOTE: https://git.kernel.org/linus/0d1c3530e1bd38382edef72591b78e877e0edcd3 (5.6)
CVE-2025-32873 (An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, ...)
- - python-django <unfixed> (bug #1104872)
+ - python-django 3:4.2.21-1 (bug #1104872)
NOTE: https://www.djangoproject.com/weblog/2025/may/07/security-releases/
NOTE: Fixed by: https://github.com/django/django/commit/9cd8028f3e38dca8e51c1388f474eecbe7d6ca3c (4.2.21)
CVE-2025-4335 (The Woocommerce Multiple Addresses plugin for WordPress is vulnerable ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2a65302c49b74515fab379a4e6663a1b4117b3d2
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2a65302c49b74515fab379a4e6663a1b4117b3d2
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250511/b1bbdb20/attachment.htm>
More information about the debian-security-tracker-commits
mailing list