summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMariusz Felisiak <felisiak.mariusz@gmail.com>2023-07-03 10:10:48 +0200
committerMariusz Felisiak <felisiak.mariusz@gmail.com>2023-07-03 10:31:45 +0200
commit848fe70f3ee6dc151831251076dc0a4a9db5a0ec (patch)
tree59857ac3de6062d378b0c74b8f834b87bec071e5
parent4012a87a58292f34e72181d9f12c94317ac6e911 (diff)
[3.2.x] Added CVE-2023-36053 to security archive.
Backport of 1d6fbf16f24200a556beb6dd197439944deb6837 from main
-rw-r--r--docs/releases/security.txt11
1 files changed, 11 insertions, 0 deletions
diff --git a/docs/releases/security.txt b/docs/releases/security.txt
index c90d732397..48586c8a6e 100644
--- a/docs/releases/security.txt
+++ b/docs/releases/security.txt
@@ -36,6 +36,17 @@ Issues under Django's security process
All security issues have been handled under versions of Django's security
process. These are listed below.
+July 3, 2023 - :cve:`2023-36053`
+--------------------------------
+
+Potential regular expression denial of service vulnerability in
+``EmailValidator``/``URLValidator``. `Full description
+<https://www.djangoproject.com/weblog/2023/jul/03/security-releases/>`__
+
+* Django 4.2 :commit:`(patch) <b7c5feb35a31799de6e582ad6a5a91a9de74e0f9>`
+* Django 4.1 :commit:`(patch) <beb3f3d55940d9aa7198bf9d424ab74e873aec3d>`
+* Django 3.2 :commit:`(patch) <454f2fb93437f98917283336201b4048293f7582>`
+
May 3, 2023 - :cve:`2023-31047`
-------------------------------