Security Fix(es):
SQL injection in QuerySet.annotate() aggregate() and extra()
(CVE-2022-28346)
Possible XSS via ‘{% debug %}’ template tag (CVE-2022-22818)
Denial of service possibility in file uploads (CVE-2022-23833)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 8 | noarch | python-django20-bash-completion | < 2.0.13-18.el8ost | python-django20-bash-completion-2.0.13-18.el8ost.noarch.rpm |
RedHat | 8 | noarch | python3-django20 | < 2.0.13-18.el8ost | python3-django20-2.0.13-18.el8ost.noarch.rpm |