Added CVE-2022-34265 to security archive.

author: Mariusz Felisiak <felisiak.mariusz@gmail.com> 2022-07-04 10:27:14 +0200
committer: Mariusz Felisiak <felisiak.mariusz@gmail.com> 2022-07-04 10:27:14 +0200
commit: d12d7c4c42814736c24731a6a300a79526fc2ef6 (patch)
tree: 0dddd5d5061887b66d9d98155f836edd2564a344 /docs/releases/security.txt
parent: c6932ea2ea7ec431245b9a343c72318bb758072f (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/docs/releases/security.txt b/docs/releases/security.txt
index b512cc7a7a..2478287668 100644
--- a/docs/releases/security.txt
+++ b/docs/releases/security.txt
@@ -36,6 +36,16 @@ Issues under Django's security process
 All security issues have been handled under versions of Django's security
 process. These are listed below.
 
+July 4, 2022 - :cve:`2022-34265`
+--------------------------------
+
+Potential SQL injection via ``Trunc(kind)`` and ``Extract(lookup_name)``
+arguments. `Full description
+<https://www.djangoproject.com/weblog/2022/jul/04/security-releases/>`__
+
+* Django 4.0 :commit:`(patch) <0dc9c016fadb71a067e5a42be30164e3f96c0492>`
+* Django 3.2 :commit:`(patch) <a9010fe5555e6086a9d9ae50069579400ef0685e>`
+
 April 11, 2022 - :cve:`2022-28346`
 ----------------------------------
author	Mariusz Felisiak <felisiak.mariusz@gmail.com>	2022-07-04 10:27:14 +0200
committer	Mariusz Felisiak <felisiak.mariusz@gmail.com>	2022-07-04 10:27:14 +0200
commit	d12d7c4c42814736c24731a6a300a79526fc2ef6 (patch)
tree	0dddd5d5061887b66d9d98155f836edd2564a344 /docs/releases/security.txt
parent	c6932ea2ea7ec431245b9a343c72318bb758072f (diff)