CVE 2022-41323
In Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were subject to a potential denial of service attack via the locale parameter, which is treated as a regular expression.
Related bugs and status
CVE-2022-41323 (Candidate) is related to these bugs:
Bug #1997198: [Debian] CVE: CVE-2022-41323/CVE-2022-34265/CVE-2022-28347/CVE-2022-28346/CVE-2022-23833: python3-django: multiple CVEs
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1997198 | [Debian] CVE: CVE-2022-41323/CVE-2022-34265/CVE-2022-28347/CVE-2022-28346/CVE-2022-23833: python3-django: multiple CVEs | StarlingX | Medium | Fix Released |
Bug #2022089: Update Django to version 4.2 for mantic
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
2022089 | Update Django to version 4.2 for mantic | python-django (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | hyperkitty (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | hyperkitty (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-mailman3 (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-mailman3 (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-assets (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-assets (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-menu-generator-ng (Ubuntu) | Undecided | Won't Fix | ||
2022089 | Update Django to version 4.2 for mantic | django-menu-generator-ng (Ubuntu Mantic) | Undecided | Won't Fix | ||
2022089 | Update Django to version 4.2 for mantic | python-django-modelcluster (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django-modelcluster (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-ara (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-ara (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-dbbackup (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-dbbackup (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django-compressor (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django-compressor (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-cte (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-cte (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-oauth-toolkit (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-oauth-toolkit (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-tables (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-tables (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | djangorestframework-filters (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | djangorestframework-filters (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | factory-boy (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | factory-boy (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | lava (Ubuntu Mantic) | Undecided | Won't Fix | ||
2022089 | Update Django to version 4.2 for mantic | postorius (Ubuntu Mantic) | Undecided | Invalid | ||
2022089 | Update Django to version 4.2 for mantic | python-django-celery-results (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django-celery-results (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django-crispy-forms (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django-crispy-forms (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django-tagging (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | python-django-tagging (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-cachalot (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | django-cachalot (Ubuntu Mantic) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | psycopg3 (Ubuntu) | Undecided | Fix Released | ||
2022089 | Update Django to version 4.2 for mantic | psycopg3 (Ubuntu Mantic) | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.