Hi,
> > ACK. Have filed #983526 for this purpose.
>
> Can you please add as well the fixes for the other open issues?
This was done on Feb 26th:
https://bugs.debian.org/983526#22
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` la...@debian.org / chris-lamb.co.uk
Hi Chris,
On Thu, Feb 25, 2021 at 04:47:34PM +, Chris Lamb wrote:
> Sébastien Delafond wrote:
>
> > > > Django is vulnerable because it embeds parse_qsl:
> > > >
> > > > https://www.djangoproject.com/weblog/2021/feb/19/security-releases/
> > >
> > > Security team, let me know if you
Sébastien Delafond wrote:
> > > Django is vulnerable because it embeds parse_qsl:
> > >
> > > https://www.djangoproject.com/weblog/2021/feb/19/security-releases/
> >
> > Security team, let me know if you would like an update for stable.
[…]
> we think this should rather go via s-p-u.
ACK.
On 19/02 09:25, Chris Lamb wrote:
> > Django is vulnerable because it embeds parse_qsl:
> >
> > https://www.djangoproject.com/weblog/2021/feb/19/security-releases/
>
> Security team, let me know if you would like an update for stable.
Hi Chris,
we think this should rather go via s-p-u.
Chris Lamb wrote:
> The following vulnerability was published for python-django.
[…]
>
> Django is vulnerable because it embeds parse_qsl:
>
> https://www.djangoproject.com/weblog/2021/feb/19/security-releases/
Security team, let me know if you would like an update for stable.
Regards,
--
Package: python-django
Version: 1:1.10.7-2+deb9u10
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
The following vulnerability was published for python-django.
CVE-2021-23336[0]:
| The package python/cpython from 0 and before 3.6.13, from 3.7.0 and
| before 3.7.10,
6 matches
Mail list logo
