1. Forum
  2. Usenet
  3. LINUX.DEBIAN.CHANGES.DEVE

  • Accepted python-django 3:5.2.1-1 (source) into experimental

    From Debian FTP Masters@21:1/5 to All on Fri May 30 20:30:02 2025
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    Format: 1.8
    Date: Wed, 07 May 2025 09:27:26 -0700
    Source: python-django
    Architecture: source
    Version: 3:5.2.1-1
    Distribution: experimental
    Urgency: medium
    Maintainer: Debian Python Team <[email protected]>
    Changed-By: Chris Lamb <[email protected]>
    Closes: 1104872
    Changes:
    python-django (3:5.2.1-1) experimental; urgency=medium
    .
    * New upstream security release:
    .
    - CVE-2025-32873: Denial-of-service possibility in strip_tags()
    .
    django.utils.html.strip_tags() would be slow to evaluate certain inputs
    containing large sequences of incomplete HTML tags. This function is used
    to implement the striptags template filter, which was therefore also
    vulnerable. strip_tags() now raises a SuspiciousOperation exception if it
    encounters an unusually large number of unclosed opening tags.
    .
    (Closes: #1104872)
    .
    <https://www.djangoproject.com/weblog/2025/may/07/security-releases/> Checksums-Sha1:
    bb09ed045a745017911b8301027d124ff080a9e8 2783 python-django_5.2.1-1.dsc
    c8c6571401bede943be6b1ca4babe93cf2612e16 10818735 python-django_5.2.1.orig.tar.gz
    feb12576e7ffa0f41ff351dc76a0cbcd10ae7d37 30096 python-django_5.2.1-1.debian.tar.xz
    48edea50e99170342a8f2ed80db5d589676954cc 9397 python-django_5.2.1-1_source.buildinfo
    Checksums-Sha256:
    3a916198824710e9ceac054feec156bbc69c8ac432863a41b3c3cdfa6c7665ce 2783 python-django_5.2.1-1.dsc
    57fe1f1b59462caed092c80b3dd324fd92161b620d59a9ba9181c34746c97284 10818735 python-django_5.2.1.orig.tar.gz
    289c4fa05e3fa1e8c79a76be388142ef987d153dc70a5958eff9c754a2f14743 30096 python-django_5.2.1-1.debian.tar.xz
    e2e841b9e966d8eca1be91b5f0976d285eb2bc40d0c48b80a3ae8d353bf7bd40 9397 python-django_5.2.1-1_source.buildinfo
    Files:
    64ae950d20e25f1f9bc5e9afb5c1d01e 2783 python optional python-django_5.2.1-1.dsc
    317174c6e0593c40e58ec1bd428b1091 10818735 python optional python-django_5.2.1.orig.tar.gz
    bf80257ae4ad41ad98d313b4e5d1a42f 30096 python optional python-django_5.2.1-1.debian.tar.xz
    9b177edac3cfbb765638e088bd11d74f 9397 python optional python-django_5.2.1-1_source.buildinfo

    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmg58zYACgkQHpU+J9Qx HlhGqA//SwcLo/f8aWLLyWBshzgkOiX9w/eXTymoLheNdj3dsEwynXc9rf/pThtw /JlyWGo6/a0xBBaHW8vqr9ML0bdkAJwYmy9yXziyQpwuKZPjXpKQP7IRi1Pjif+J fa4B7npD6qs7Q7QRNe5HqwD09GznvHCX43lcHbznersCj0V+g/8SqizrecDRRU2P 0VMmeCCcA4DE7tRggRpx5vHxsoMRkD06lRZmj2taVMJufFDsSkYVHf3gIYH9dEZd +f8HKZABSLpTXQyf7NktNTc5f7Ve8J3rAnKZx2siJgKMosKjsmIuU2akn7RMb852 Wa7pk4rt5TRlTtku0JFlZLE45wZ1vHA/DjCNC072qLt5U27ToGizmajxvKjA5d7E JmwNAc/gNPZcq51V7QIE2gzpD50SmQTTG8h6I3dMGQF+u+YmdCqAAjVD6kkViPYQ /XACsARVYCunAOu71PpLyuUHCDUS9zsI7QjElXxTq70PTTVr+62/79BBFOyf1Elw A5AC2UdGsRSXTuzloolOuOuLUd5wgiWaQRD11wJAguQthj9W2KcP7jwNv0iCbFfP 5pP7O88txTu7OZlpVJgYcP75UqIqMyo0XIfVDCsDdv8zWnbPdBIWkktHEtu/5LFR xBwxOJK1YSFYWwsXqbhKvgEIOhvLmDbavt5rvJagYWpG87BWGTQ=
    =L4d9
    -----END PGP SIGNATURE-----


    --==============P86532626958898840=Content-Type: application/pgp-signature

    -----BEGIN PGP SIGNATURE-----

    iHUEABYIAB0WIQTziqJOuF8J+ZI8pJSb9qggYcy5IQUCaDn3KwAKCRCb9qggYcy5 IcurAPwKhxdgLiTWlSPT8xQNQAJjzhb9Eho8NhSkZgd/3fp26QEArDJTPNSr5RfE UjFX249msEWqWcpfaBznFesKEb3UVQg�FK
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)