On Wed, Feb 18, 2026 at 02:49:15PM -0800, Chris Lamb wrote:
> Hi security team,
>
> Based on your previous preference for a DSA (over PU) for Django,
> I have prepared an update for python-django (3:4.2.28-0+deb13u1)
> intended for trixie:
Thanks! Given the SQL injections involved, we should fix this via
trixie-security,
the debdiff looks good. Since this introduces a new tarball, please build with
-sa and upload to security-master.
Most of these also appear to affect 3.2 boomworm is support for a few more
months
before it becomes LTS; could you please also prepare a debdiff for
bookworm-security?
Cheers,
Moritz
