FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Django -- multiple vulnerabilities

Affected packages
py310-django32 < 3.2.18
py37-django32 < 3.2.18
py38-django32 < 3.2.18
py39-django32 < 3.2.18
py310-django40 < 4.0.10
py38-django40 < 4.0.10
py39-django40 < 4.0.10
py310-django41 < 4.1.7
py38-django41 < 4.1.7
py39-django41 < 4.1.7

Details

VuXML ID 9c9ee9a6-ac5e-11ed-9323-080027d3a315
Discovery 2023-02-01
Entry 2023-02-14

Django reports:

CVE-2023-24580: Potential denial-of-service vulnerability in file uploads.

References

CVE Name CVE-2023-24580
URL https://www.djangoproject.com/weblog/2023/feb/14/security-releases/