Описание
Security update for python-Django
This update for python-Django fixes the following issues:
- CVE-2025-26699: Fixed potential denial-of-service in django.utils.text.wrap() (bsc#1239052).
Список пакетов
SUSE Linux Enterprise Module for Package Hub 15 SP6
python311-Django-4.2.11-150600.3.18.1
openSUSE Leap 15.6
python311-Django-4.2.11-150600.3.18.1
Ссылки
- Link for SUSE-SU-2025:0959-1
- E-Mail link for SUSE-SU-2025:0959-1
- SUSE Security Ratings
- SUSE Bug 1239052
- SUSE CVE CVE-2025-26699 page
Описание
An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2.20. The django.utils.text.wrap() method and wordwrap template filter are subject to a potential denial-of-service attack when used with very long strings.
Затронутые продукты
SUSE Linux Enterprise Module for Package Hub 15 SP6:python311-Django-4.2.11-150600.3.18.1
openSUSE Leap 15.6:python311-Django-4.2.11-150600.3.18.1
Ссылки
- CVE-2025-26699
- SUSE Bug 1239052