Update django to 4.2.11 #4901

pyup-bot · 2024-03-04T11:35:23Z

This PR updates django from 4.2.10 to 4.2.11.

Changelog

4.2.11

===========================

*March 4, 2024*

Django 4.2.11 fixes a security issue with severity &quot;moderate&quot; and a regression
in 4.2.10.

CVE-2024-27351: Potential regular expression denial-of-service in ``django.utils.text.Truncator.words()``
=========================================================================================================

``django.utils.text.Truncator.words()`` method (with ``html=True``) and
:tfilter:`truncatewords_html` template filter were subject to a potential
regular expression denial-of-service attack using a suitably crafted string
(follow up to :cve:`2019-14232` and :cve:`2023-43665`).

Bugfixes
========

* Fixed a regression in Django 4.2.10 where ``intcomma`` template filter could
return a leading comma for string representation of floats (:ticket:`35172`).


===========================

Links

PyPI: https://pypi.org/project/django
Changelog: https://data.safetycli.com/changelogs/django/
Homepage: https://www.djangoproject.com/

Update django from 4.2.10 to 4.2.11

462862a

pyup-bot added the update label Mar 4, 2024

browniebroke merged commit 2aff1bd into master Mar 4, 2024
15 checks passed

browniebroke deleted the pyup-update-django-4.2.10-to-4.2.11 branch March 4, 2024 12:32

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update django to 4.2.11 #4901

Update django to 4.2.11 #4901

pyup-bot commented Mar 4, 2024

Update django to 4.2.11 #4901

Update django to 4.2.11 #4901

Conversation

pyup-bot commented Mar 4, 2024

4.2.11