CVE-2023-41164
03.11.2023, 05:15
In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uri_to_iri() is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters.Enginsight
| Vendor | Product | Version |
|---|---|---|
| djangoproject | django | 3.2 ≤ 𝑥 < 3.2.21 |
| djangoproject | django | 4.1 ≤ 𝑥 < 4.1.11 |
| djangoproject | django | 4.2 ≤ 𝑥 < 4.2.5 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| python-django |
|
References