[5.2.x] Added CVE-2025-27556 to security archive.

Backport of b83dab7d8da8d1dd888164de5ed79e88cedcb19b from main.
author: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com> 2025-04-02 13:31:24 +0200
committer: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com> 2025-04-02 13:32:31 +0200
commit: 54b38ab44d24a643a74f284138e3732f966d2c19 (patch)
tree: 3a5f60891546d92d711716c530a4177744ad1bb8
parent: 2cb311f7b069723027fb5def4044d1816d7d2afd (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/docs/releases/security.txt b/docs/releases/security.txt
index d55c7bf497..1f7d2542ff 100644
--- a/docs/releases/security.txt
+++ b/docs/releases/security.txt
@@ -36,6 +36,16 @@ Issues under Django's security process
 All security issues have been handled under versions of Django's security
 process. These are listed below.
 
+April 2, 2025 - :cve:`2025-27556`
+---------------------------------
+
+Potential denial-of-service vulnerability in ``LoginView``, ``LogoutView``, and
+``set_language()`` on Windows. `Full description
+<https://www.djangoproject.com/weblog/2025/apr/02/security-releases/>`__
+
+* Django 5.1 :commit:`(patch) <edc2716d01a6fdd84b173c02031695231bcee1f8>`
+* Django 5.0 :commit:`(patch) <8c6871b097b6c49d2a782c0d80d908bcbe2116f1>`
+
 March 6, 2025 - :cve:`2025-26699`
 ---------------------------------
author	Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>	2025-04-02 13:31:24 +0200
committer	Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>	2025-04-02 13:32:31 +0200
commit	54b38ab44d24a643a74f284138e3732f966d2c19 (patch)
tree	3a5f60891546d92d711716c530a4177744ad1bb8
parent	2cb311f7b069723027fb5def4044d1816d7d2afd (diff)