Request 1117946: Submit python-Django - openSUSE Build Service

Overview

Request 1117946 accepted

- Update to 4.2.6 (bsc#1215978, CVE-2023-43665)
* CVE-2023-43665: Denial-of-service possibility in
django.utils.text.Truncator
The input processed by Truncator, when operating in HTML mode, has
been limited to the first five million characters in order to
avoid potential performance and memory issues.
* Fixed a regression in Django 4.2.5 where overriding the deprecated
DEFAULT_FILE_STORAGE and STATICFILES_STORAGE settings in tests
caused the main STORAGES to mutate (#34821).
* Fixed a regression in Django 4.2 that caused unnecessary casting
of string based fields (CharField, EmailField, TextField,
CICharField, CIEmailField, and CITextField) used with the __isnull
lookup on PostgreSQL. As a consequence, indexes using an __isnull
expression or condition created before Django 4.2 wouldn’t be used
by the query planner, leading to a performance regression
(#34840).

Created by dgarcia 7 months ago
In state accepted

Submit python-Django

Comments for request 1117946 0

Login required, please login in order to comment

Request History

dgarcia created request 7 months ago

- Update to 4.2.6 (bsc#1215978, CVE-2023-43665)
* CVE-2023-43665: Denial-of-service possibility in
django.utils.text.Truncator
The input processed by Truncator, when operating in HTML mode, has
been limited to the first five million characters in order to
avoid potential performance and memory issues.
* Fixed a regression in Django 4.2.5 where overriding the deprecated
DEFAULT_FILE_STORAGE and STATICFILES_STORAGE settings in tests
caused the main STORAGES to mutate (#34821).
* Fixed a regression in Django 4.2 that caused unnecessary casting
of string based fields (CharField, EmailField, TextField,
CICharField, CIEmailField, and CITextField) used with the __isnull
lookup on PostgreSQL. As a consequence, indexes using an __isnull
expression or condition created before Django 4.2 wouldn’t be used
by the query planner, leading to a performance regression
(#34840).

anag+factory set openSUSE:Factory:Staging:C as a staging project 7 months ago

Being evaluated by staging project "openSUSE:Factory:Staging:C"

anag+factory accepted review 7 months ago

Picked "openSUSE:Factory:Staging:C"

factory-auto added opensuse-review-team as a reviewer 7 months ago

Please review sources

factory-auto accepted review 7 months ago

Check script succeeded

licensedigger accepted review 7 months ago

ok

anag+factory added factory-staging as a reviewer 7 months ago

Being evaluated by group "factory-staging"

anag+factory accepted review 7 months ago

Unstaged from project "openSUSE:Factory:Staging:C"

anag+factory set openSUSE:Factory:Staging:E as a staging project 7 months ago

Being evaluated by staging project "openSUSE:Factory:Staging:E"

anag+factory accepted review 7 months ago

Picked "openSUSE:Factory:Staging:E"

darix accepted review 7 months ago

Accepted review for by_group opensuse-review-team request 1117946 from user anag+factory

anag+factory accepted review 7 months ago

Staging Project openSUSE:Factory:Staging:E got accepted.

anag+factory approved review 7 months ago

Staging Project openSUSE:Factory:Staging:E got accepted.

anag+factory accepted request 7 months ago

Staging Project openSUSE:Factory:Staging:E got accepted.

openSUSE Build Service is sponsored by