[5.2.x] Fixed CVE-2025-13372 -- Protected FilteredRelation against SQL injection in column aliases on PostgreSQL. - django.git

diff options

author	Jacob Walls <jacobtylerwalls@gmail.com>	2025-11-17 17:09:54 -0500
committer	Natalia <124304+nessita@users.noreply.github.com>	2025-12-02 09:27:34 -0300
commit	479415ce5249bcdebeb6570c72df2a87f45a7bbf (patch)
tree	d7959f5126003e1bd994831b8e40288c899db54f /tests/serializers/test_deserialization.py
parent	da1dfe64c821ba03ca7b0c936184cca1ad641316 (diff)

[5.2.x] Fixed CVE-2025-13372 -- Protected FilteredRelation against SQL injection in column aliases on PostgreSQL.

Follow-up to CVE-2025-57833. Thanks Stackered for the report, and Simon Charette and Mariusz Felisiak for the reviews. Backport of 5b90ca1e7591fa36fccf2d6dad67cf1477e6293e from main.

Diffstat (limited to 'tests/serializers/test_deserialization.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: