summaryrefslogtreecommitdiff
path: root/docs
diff options
context:
space:
mode:
authorCarlton Gibson <carlton.gibson@noumenal.es>2019-08-01 11:57:24 +0200
committerCarlton Gibson <carlton.gibson@noumenal.es>2019-08-01 12:03:53 +0200
commit859d1d1cb0f5784a5573447dbca8785326849abe (patch)
tree6aa2cbed6a640fdb04641e93844548ba4deb7501 /docs
parent928d596886a9c7cc8b9847631c3592e88b6b7e6f (diff)
[2.2.x] Added CVE-2019-14233 to security release archive.
Backport of 9600f63885d2d240f85d59bff6acbe200f890298 from master
Diffstat (limited to 'docs')
-rw-r--r--docs/releases/security.txt13
1 files changed, 13 insertions, 0 deletions
diff --git a/docs/releases/security.txt b/docs/releases/security.txt
index cbbccb9495..2da3b86f86 100644
--- a/docs/releases/security.txt
+++ b/docs/releases/security.txt
@@ -987,3 +987,16 @@ Versions affected
* Django 2.2 :commit:`(patch) <c3289717c6f21a8cf23daff1c78c0c014b94041f>`
* Django 2.1 :commit:`(patch) <c23723a1551340cc7d3126f04fcfd178fa224193>`
* Django 1.11 :commit:`(patch) <42a66e969023c00536256469f0e8b8a099ef109d>`
+
+August 1, 2019 - :cve:`2019-14233`
+----------------------------------
+
+Denial-of-service possibility in ``strip_tags()``. `Full description
+<https://www.djangoproject.com/weblog/2019/aug/01/security-releases/>`__
+
+Versions affected
+~~~~~~~~~~~~~~~~~
+
+* Django 2.2 :commit:`(patch) <e34f3c0e9ee5fc9022428fe91640638bafd4cda7>`
+* Django 2.1 :commit:`(patch) <5ff8e791148bd451180124d76a55cb2b2b9556eb>`
+* Django 1.11 :commit:`(patch) <52479acce792ad80bb0f915f20b835f919993c72>`