FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Django -- multiple vulnerabilities

Affected packages
py310-django32 < 3.2.15
py38-django32 < 3.2.15
py39-django32 < 3.2.15
py310-django40 < 4.0.7
py38-django40 < 4.0.7
py39-django40 < 4.0.7

Details

VuXML ID 3b47104f-1461-11ed-a0c5-080027240888
Discovery 2022-08-01
Entry 2022-08-05

Django reports:

CVE-2022-36359: Potential reflected file download vulnerability in FileResponse.

References

CVE Name CVE-2022-36359
URL https://www.djangoproject.com/weblog/2022/aug/03/security-releases/