mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-09-15 15:05:14 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Added CVE-2023-31047 to security archive.

Browse source
This commit is contained in:
Mariusz Felisiak 2023-05-03 15:20:31 +02:00
parent b0d3a5de95
commit 49830025c9
1 changed files with 11 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

11
docs/releases/security.txt
View file

@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security All security issues have been handled under versions of Django's security
process. These are listed below. process. These are listed below.
May 3, 2023 - :cve:`2023-31047`
-------------------------------
Potential bypass of validation when uploading multiple files using one form
field. `Full description
<https://www.djangoproject.com/weblog/2023/may/03/security-releases/>`__
* Django 4.2 :commit:`(patch) <21b1b1fc03e5f9e9f8c977ee6e35618dd3b353dd>`
* Django 4.1 :commit:`(patch) <e7c3a2ccc3a562328600be05068ed9149e12ce64>`
* Django 3.2 :commit:`(patch) <eed53d0011622e70b936e203005f0e6f4ac48965>`
February 14, 2023 - :cve:`2023-24580` February 14, 2023 - :cve:`2023-24580`
------------------------------------- -------------------------------------