| Age | Commit message (Expand) | Author |
| 2022-07-04 | [4.0.x] Fixed CVE-2022-34265 -- Protected Trunc(kind)/Extract(lookup_name) ag... | Mariusz Felisiak |
| 2022-06-27 | [4.0.x] Fixed docs build with sphinxcontrib-spelling 7.5.0+. | Mariusz Felisiak |
| 2022-06-27 | [4.0.x] Added stub release notes and release date for 4.0.6 and 3.2.14. | Mariusz Felisiak |
| 2022-06-21 | [4.0.x] Fixed #33789 -- Doc'd changes in quoting table/column names on Oracle... | Mariusz Felisiak |
| 2022-06-01 | [4.0.x] Added stub release notes for 4.0.6. | Carlton Gibson |
| 2022-06-01 | [4.0.x] Updated release date for Django 4.0.5. | Carlton Gibson |
| 2022-05-21 | [4.0.x] Fixed #33725 -- Made hidden quick filter in admin's navigation sideba... | Sankalp |
| 2022-05-19 | [4.0.x] Fixed #33705 -- Fixed crash when using IsNull() lookup in filters. | David Wobrock |
| 2022-05-16 | [4.0.x] Fixed #33681 -- Made Redis client pass CACHES["OPTIONS"] to a connect... | Mariusz Felisiak |
| 2022-05-03 | [4.0.x] Updated release date for Django 4.0.5. | Carlton Gibson |
| 2022-04-28 | [4.0.x] Added backticks to code literals in various docs. | David |
| 2022-04-28 | [4.0.x] Changed "refactorings" to "refactoring" in docs/releases/1.0.txt. | David |
| 2022-04-28 | [4.0.x] Changed "ie." to "i.e." in docs. | David |
| 2022-04-11 | [4.0.x] Added stub release notes for 4.0.5. | Mariusz Felisiak |
| 2022-04-11 | [4.0.x] Added CVE-2022-28346 and CVE-2022-28347 to security archive. | Mariusz Felisiak |
| 2022-04-11 | [4.0.x] Fixed CVE-2022-28347 -- Protected QuerySet.explain(**options) against... | Mariusz Felisiak |
| 2022-04-11 | [4.0.x] Fixed CVE-2022-28346 -- Protected QuerySet.annotate(), aggregate(), a... | Mariusz Felisiak |
| 2022-04-11 | [4.0.x] Fixed #33628 -- Ignored directories with empty names in autoreloader ... | Manel Clos |
| 2022-04-04 | [4.0.x] Added stub release notes and release date for 4.0.4, 3.2.13, and 2.2.28. | Mariusz Felisiak |
| 2022-03-30 | [4.0.x] Fixed #33598 -- Reverted "Removed unnecessary reuse_with_filtered_rel... | Mariusz Felisiak |
| 2022-03-29 | [4.0.x] Updated Oracle docs links to Oracle 21c. | Mariusz Felisiak |
| 2022-03-17 | [4.0.x] Added missing backticks to function names. | Mariusz Felisiak |
| 2022-03-01 | [4.0.x] Added stub release notes for Django 4.0.4. | Carlton Gibson |
| 2022-03-01 | [4.0.x] Updated release date for version 4.0.3. | Carlton Gibson |
| 2022-03-01 | [4.0.x] Fixed #33547 -- Fixed error when rendering invalid inlines with reado... | Mariusz Felisiak |
| 2022-02-16 | [4.0.x] Fixed #33515 -- Prevented recreation of migration for ManyToManyField... | Mariusz Felisiak |
| 2022-02-08 | [4.0.x] Refs #33476 -- Adjusted docs and config files for Black. | Carlton Gibson |
| 2022-02-02 | [4.0.x] Fixed typo in release notes. | David Smith |
| 2022-02-01 | [4.0.x] Added stub release notes for 4.0.3. | Mariusz Felisiak |
| 2022-02-01 | [4.0.x] Added CVE-2022-22818 and CVE-2022-23833 to security archive. | Mariusz Felisiak |
| 2022-02-01 | [4.0.x] Fixed CVE-2022-23833 -- Fixed DoS possiblity in file uploads. | Mariusz Felisiak |
| 2022-02-01 | [4.0.x] Fixed CVE-2022-22818 -- Fixed possible XSS via {% debug %} template tag. | Markus Holtermann |
| 2022-02-01 | [4.0.x] Fixed #33480 -- Fixed makemigrations crash when renaming field of ren... | Kirill Safronov |
| 2022-01-31 | [4.0.x] Fixed #33468 -- Fixed QuerySet.aggregate() after annotate() crash on ... | Mariusz Felisiak |
| 2022-01-29 | [4.0.x] Updated translations from Transifex. | Claude Paroz |
| 2022-01-27 | [4.0.x] Fixed #33462 -- Fixed migration crash when altering type of primary k... | Mariusz Felisiak |
| 2022-01-26 | [4.0.x] Fixed #33407 -- Fixed .radiolist admin CSS. | Carlton Gibson |
| 2022-01-25 | [4.0.x] Added stub release notes and release date for 4.0.2, 3.2.12, and 2.2.27. | Mariusz Felisiak |
| 2022-01-21 | [4.0.x] Fixed #33449 -- Fixed makemigrations crash on models without Meta.ord... | Fabian Büchler |
| 2022-01-10 | [4.0.x] Fixed #33426 -- Fixed ResolverMatch.__repr_() for class-based views. | Keryn Knight |
| 2022-01-08 | [4.0.x] Fixed #33425 -- Fixed view name for CBVs on technical 404 debug page. | Keryn Knight |
| 2022-01-07 | [4.0.x] Fixed #33419 -- Restored marking forms.Field.help_text as HTML safe. | David |
| 2022-01-07 | [4.0.x] Fixed #33410 -- Fixed recursive capturing of callbacks by TestCase.ca... | Petter Friberg |
| 2022-01-04 | [4.0.x] Added CVE-2021-45115, CVE-2021-45116, and CVE-2021-45452 to security ... | Carlton Gibson |
| 2022-01-04 | [4.0.x] Added stub release notes for Django 4.0.2. | Carlton Gibson |
| 2022-01-04 | [4.0.x] Fixed CVE-2021-45452 -- Fixed potential path traversal in storage sub... | Florian Apolloner |
| 2022-01-04 | [4.0.x] Fixed CVE-2021-45116 -- Fixed potential information disclosure in dic... | Florian Apolloner |
| 2022-01-04 | [4.0.x] Fixed CVE-2021-45115 -- Prevented DoS vector in UserAttributeSimilari... | Florian Apolloner |
| 2021-12-28 | [4.0.x] Added stub release notes for 4.0.1, 3.2.11, and 2.2.26 releases. | Carlton Gibson |
| 2021-12-22 | [4.0.x] Refs #32355 -- Bumped required psycopg2 version to 2.8.4. | Mariusz Felisiak |