SUSE Package Hub - openSUSE-2025-421

Update Info

openSUSE-2025-421

Security update for python-Django

Type: security

Severity: important

Issued: 2025-11-06

Description:

This update for python-Django fixes the following issues:

- CVE-2025-64459: Fixed a potential SQL injection via `_connector` keyword argument in `QuerySet` and `Q` objects (boo#1252926).

References

CVE: CVE-2025-64459
Bugzilla: 1252926 VUL-0: CVE-2025-64459: python-Django,python-Django4: Potential SQL injection via `_connector` keyword argument in `QuerySet` and `Q` objects

Packages

python-Django-2.2.28-bp156.24.1