Django - 4.2.3
Security
Django 4.2.3 release notes
July 3, 2023
Django 4.2.3 fixes a security issue with severity “moderate” and several bugs
in 4.2.2.
CVE-2023-36053: Potential regular expression denial of service vulnerability in EmailValidator
/URLValidator
EmailValidator
and URLValidator
were subject to potential regular
expression denial of service attack via a very large number of domain name
labels of emails and URLs.
Bugfixes
- Fixed a regression in Django 4.2 that caused incorrect alignment of timezone
warnings forDateField
andTimeField
in the admin (#34645). - Fixed a regression in Django 4.2 that caused incorrect highlighting of rows
in the admin changelist view whenModelAdmin.list\_editable
contained a
BooleanField
(#34638).
Security
Details
date
July 3, 2023, 6:24 a.m.
type
Patch
official page
👇
Register or login to:
- 🔍View and search all Django releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!