[Git][security-tracker-team/security-tracker][master] Add CVE-2025-6445{8,9}/python-django

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
888fe30c by Salvatore Bonaccorso at 2025-11-05T21:51:58+01:00
Add CVE-2025-6445{8,9}/python-django

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,7 +1,13 @@
 CVE-2025-64459 (An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5 ...)
-	TODO: check
+	- python-django <unfixed>
+	NOTE: https://www.djangoproject.com/weblog/2025/nov/05/security-releases/
+	NOTE: https://github.com/django/django/commit/98e642c69181c942d60a10ca0085d48c6b3068bb (main)
+	NOTE: https://github.com/django/django/commit/59ae82e67053d281ff4562a24bbba21299f0a7d4 (4.2.26)
 CVE-2025-64458 (An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5 ...)
-	TODO: check
+	- python-django <unfixed>
+	NOTE: https://www.djangoproject.com/weblog/2025/nov/05/security-releases/
+	NOTE: https://github.com/django/django/commit/c880530ddd4fabd5939bab0e148bebe36699432a (main)
+	NOTE: https://github.com/django/django/commit/770eea38d7a0e9ba9455140b5a9a9e33618226a7 (4.2.26)
 CVE-2025-63601 (Snipe-IT before version 8.3.3 contains a remote code execution vulnera ...)
 	TODO: check
 CVE-2025-63418 (A DOM-based Cross-Site Scripting (XSS) vulnerability in the SelfBest p ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/888fe30c3028bd9fbb260b836e022227747523e1

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/888fe30c3028bd9fbb260b836e022227747523e1
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251105/33fd9fec/attachment.htm>