mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-07-09 12:19:13 +00:00
Code Issues 32 Releases Wiki Activity
django/docs/releases/2.2.28.txt
Mariusz Felisiak 9e19accb6e [3.2.x] Fixed CVE-2022-28347 -- Protected QuerySet.explain(**options) against SQL injection on PostgreSQL. 
Backport of 6723a26e59b0b5429a0c5873941e01a2e1bdbb81 from main.
2022-04-11 09:12:58 +02:00

23 lines
988 B
Plaintext
Raw Permalink Blame History

===========================
Django 2.2.28 release notes
===========================
*April 11, 2022*
Django 2.2.28 fixes two security issues with severity "high" in 2.2.27.
CVE-2022-28346: Potential SQL injection in ``QuerySet.annotate()``, ``aggregate()``, and ``extra()``
====================================================================================================
:meth:`.QuerySet.annotate`, :meth:`~.QuerySet.aggregate`, and
:meth:`~.QuerySet.extra` methods were subject to SQL injection in column
aliases, using a suitably crafted dictionary, with dictionary expansion, as the
``**kwargs`` passed to these methods.
CVE-2022-28347: Potential SQL injection via ``QuerySet.explain(**options)`` on PostgreSQL
=========================================================================================
:meth:`.QuerySet.explain` method was subject to SQL injection in option names,
using a suitably crafted dictionary, with dictionary expansion, as the
``**options`` argument.
Reference in New Issue View Git Blame Copy Permalink