Package: python-django Version: 2:2.2.28-1~deb11u8 X-Debbugs-CC: [email protected] Severity: grave Tags: security
Hi, The following vulnerabilities were published for python-django. * CVE-2025-59681: Potential SQL injection in QuerySet.annotate(), alias(), aggregate(), and extra() on MySQL and MariaDB. QuerySet.annotate(), QuerySet.alias(), QuerySet.aggregate(), and QuerySet.extra() methods were subject to SQL injection in column aliases, using a suitably crafted dictionary, with dictionary expansion, as the **kwargs passed to these methods on MySQL and MariaDB. * CVE-2025-59682: Potential partial directory-traversal via archive.extract() The django.utils.archive.extract() function, used by startapp --template and startproject --template, allowed partial directory- traversal via an archive with file paths sharing a common prefix with the target directory. https://www.djangoproject.com/weblog/2025/oct/01/security-releases/ Regards, -- ,''`. : :' : Chris Lamb `. `'` [email protected] / chris-lamb.co.uk `-
