FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Django -- multiple vulnerabilities

Affected packages
py310-django32 < 3.2.21
py311-django32 < 3.2.21
py38-django32 < 3.2.21
py39-django32 < 3.2.21
py310-django41 < 4.1.11
py311-django41 < 4.1.11
py38-django41 < 4.1.11
py39-django41 < 4.1.11
py310-django42 < 4.2.5
py311-django42 < 4.2.5
py38-django42 < 4.2.5
py39-django42 < 4.2.5

Details

VuXML ID 8fd4f40a-4b7d-11ee-aa2a-080027de9982
Discovery 2023-09-01
Entry 2023-09-04

Django reports:

CVE-2023-41164: Potential denial of service vulnerability in django.utils.encoding.uri_to_iri().

References

CVE Name CVE-2023-41164
URL https://www.djangoproject.com/weblog/2023/sep/04/security-releases/