It was discovered that Django incorrectly handled certain strings in floatformat function. An attacker could possibly use this issue to cause a memory exhaustion. (CVE-2024-41989)
It was discovered that Django incorrectly handled very large inputs. An attacker could possibly use this issue to cause a denial of service. (CVE-2024-41990)
It was discovered that Django in AdminURLFieldWidget incorrectly handled certain inputs with a very large number of Unicode characters. An attacker could possibly use this issue to cause a denial of service. (CVE-2024-41991)
It was discovered that Django incorrectly handled certain JSON objects. An attacker could possibly use this issue to cause a potential SQL injection. This issue only affected Ubuntu 22.04 LTS, and Ubuntu 24.04 LTS. (CVE-2024-42005)
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_version": "1:1.11.11-1ubuntu1.21+esm6", "binary_name": "python-django" }, { "binary_version": "1:1.11.11-1ubuntu1.21+esm6", "binary_name": "python-django-common" }, { "binary_version": "1:1.11.11-1ubuntu1.21+esm6", "binary_name": "python-django-doc" }, { "binary_version": "1:1.11.11-1ubuntu1.21+esm6", "binary_name": "python3-django" } ] }