[SECURITY] [DSA 6150-1] python-django security update

Thu, 26 Feb 2026 13:50:43 -0800 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6150-1                   [email protected]
https://www.debian.org/security/                       Moritz Muehlenhoff
February 26, 2026                     https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : python-django
CVE ID         : CVE-2025-13473 CVE-2025-14550 CVE-2026-1207 CVE-2026-1285 
                 CVE-2026-1287 CVE-2026-1312

Multiple security issues were found in Django, a Python web development
framework, which could result in denial of service, information
disclosure or SQL injection.

For the oldstable distribution (bookworm), these problems have been fixed
in version 3:3.2.25-0+deb12u2.

For the stable distribution (trixie), these problems have been fixed in
version 3:4.2.28-0+deb13u1.

We recommend that you upgrade your python-django packages.

For the detailed security status of python-django please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/python-django

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----
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=A3oL
-----END PGP SIGNATURE-----

Reply via email to