[4.2.x] Fixed CVE-2026-1207 -- Prevented SQL injections in RasterField lookups via band index. - django.git

diff options

author	Jacob Walls <jacobtylerwalls@gmail.com>	2026-01-19 15:42:33 -0500
committer	Jacob Walls <jacobtylerwalls@gmail.com>	2026-02-03 08:25:13 -0500
commit	a14363102d98fa29b8cced578eb3a0fadaa5bcb7 (patch)
tree	2bdc10fc99f861027d3dcc8cd483d0030a2571c3 /django/db/models/sql/datastructures.py
parent	f578acc8c54530fffabd52d2db654c8669b011af (diff)

[4.2.x] Fixed CVE-2026-1207 -- Prevented SQL injections in RasterField lookups via band index.

Thanks Tarek Nakkouch for the report, and Simon Charette for the initial triage and review. Backport of 81aa5292967cd09319c45fe2c1a525ce7b6684d8 from main.

Diffstat (limited to 'django/db/models/sql/datastructures.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: