Overview

File _patchinfo of Package patchinfo.36738

<patchinfo incident="36738">
  <issue tracker="cve" id="2024-53907"/>
  <issue tracker="cve" id="2024-53908"/>
  <issue tracker="bnc" id="1234232">VUL-0: CVE-2024-53907: python-Django: Potential denial-of-service in django.utils.html.strip_tags()</issue>
  <issue tracker="bnc" id="1234231">VUL-0: CVE-2024-53908: python-Django: Potential SQL injection in HasKey(lhs, rhs) on Oracle</issue>
  <packager>mcalabkova</packager>
  <rating>critical</rating>
  <category>security</category>
  <summary>Security update for python-Django</summary>
  <description>This update for python-Django fixes the following issues:

  - CVE-2024-53907: Fixed denial-of-service in django.utils.html.strip_tags() (bsc#1234232)
  - CVE-2024-53908: Fixed SQL injection in HasKey(lhs, rhs) on Oracle (bsc#1234231)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places