0
0
mirror of https://github.com/django/django.git synced 2024-11-24 02:47:35 +01:00
django/docs/releases/3.2.24.txt
Adam Johnson 55519d6cf8 Fixed CVE-2024-24680 -- Mitigated potential DoS in intcomma template filter.
Thanks Seokchan Yoon for the report.

Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com>
Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
Co-authored-by: Shai Berger <shai@platonix.com>
2024-02-06 09:07:31 -03:00

14 lines
451 B
Plaintext

===========================
Django 3.2.24 release notes
===========================
*February 6, 2024*
Django 3.2.24 fixes a security issue with severity "moderate" in 3.2.23.
CVE-2024-24680: Potential denial-of-service in ``intcomma`` template filter
===========================================================================
The ``intcomma`` template filter was subject to a potential denial-of-service
attack when used with very long strings.