[Python-modules-team] Bug#780874: python-django: CVE-2015-2316: Denial-of-service possibility with strip_tags()
carnil at debian.org
Fri Mar 20 20:01:58 UTC 2015
Tags: security upstream patch fixed-upstream
the following vulnerability was published for python-django.
Denial-of-service possibility with strip_tags()
AFAICS this actually is only a problem if it would be used with Python
< 2.7.7 or < 3.3.5, according to the upstream advisory. So should not
affect (apart source-wise) the package in jessie and sid. Can you
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
More information about the Python-modules-team