Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-4384

Security update for python-Django

Type: security
Severity: important
Issued: 2025-12-12
Description:
This update for python-Django fixes the following issues:

- CVE-2025-13372: Fixed SQL Injection in FilteredRelation (bsc#1254437)
- CVE-2025-64460: Fixed denial of service via specially crafted XML input in 
  django.core.serializers.xml_serializer.getInnerText() (bsc#1254437)

References

Packages

  • python-Django-4.2.11-150600.3.44.1