[4.2.x] Added CVE-2025-26699 to security archive.

Backport of bad1a18ff28a671f2fdfd447bdf8f43602f882c2 from main.
author: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com> 2025-03-06 14:04:36 +0100
committer: Sarah Boyce <42296566+sarahboyce@users.noreply.github.com> 2025-03-06 14:09:31 +0100
commit: 506cf74b0ac3a61c1bc341f9beebf8f9c087a7e4 (patch)
tree: 4d16f081ac03eac8e4896dbe2b0ee111e60e30d9 /docs/releases/security.txt
parent: 6d3f4c13f16c362a59c27ca55491c9bb06b98b59 (diff)
1 files changed, 11 insertions, 0 deletions
diff --git a/docs/releases/security.txt b/docs/releases/security.txt
index f997fe94a3..acc143770b 100644
--- a/docs/releases/security.txt
+++ b/docs/releases/security.txt
@@ -36,6 +36,17 @@ Issues under Django's security process
 All security issues have been handled under versions of Django's security
 process. These are listed below.
 
+March 6, 2025 - :cve:`2025-26699`
+---------------------------------
+
+Potential denial-of-service in ``django.utils.text.wrap()``.
+`Full description
+<https://www.djangoproject.com/weblog/2025/mar/06/security-releases/>`__
+
+* Django 5.1 :commit:`(patch) <8dbb44d34271637099258391dfc79df33951b841>`
+* Django 5.0 :commit:`(patch) <4f2765232336b8ad0afd8017d9d912ae93470017>`
+* Django 4.2 :commit:`(patch) <e88f7376fe68dbf4ebaf11fad1513ce700b45860>`
+
 January 14, 2025 - :cve:`2024-56374`
 ------------------------------------
author	Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>	2025-03-06 14:04:36 +0100
committer	Sarah Boyce <42296566+sarahboyce@users.noreply.github.com>	2025-03-06 14:09:31 +0100
commit	506cf74b0ac3a61c1bc341f9beebf8f9c087a7e4 (patch)
tree	4d16f081ac03eac8e4896dbe2b0ee111e60e30d9 /docs/releases/security.txt
parent	6d3f4c13f16c362a59c27ca55491c9bb06b98b59 (diff)