Skip to content

Commit cf5111c

Browse files
felixxmfelixxm
committed
[2.2.x] Added CVE-2020-9402 to security archive.
Backport of f37f9a0 from master
1 parent b92e811 commit cf5111c

File tree

1 file changed

+14
-0
lines changed

1 file changed

+14
-0
lines changed

docs/releases/security.txt

Lines changed: 14 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1068,3 +1068,17 @@ Versions affected
10681068
* Django 3.0 :commit:`(patch) <505826b469b16ab36693360da9e11fd13213421b>`
10691069
* Django 2.2 :commit:`(patch) <c67a368c16e4680b324b4f385398d638db4d8147>`
10701070
* Django 1.11 :commit:`(patch) <001b0634cd309e372edb6d7d95d083d02b8e37bd>`
1071+
1072+
March 4, 2020 - :cve:`2020-9402`
1073+
--------------------------------
1074+
1075+
Potential SQL injection via ``tolerance`` parameter in GIS functions and
1076+
aggregates on Oracle. `Full description
1077+
<https://www.djangoproject.com/weblog/2020/mar/04/security-releases/>`__
1078+
1079+
Versions affected
1080+
~~~~~~~~~~~~~~~~~
1081+
1082+
* Django 3.0 :commit:`(patch) <26a5cf834526e291db00385dd33d319b8271fc4c>`
1083+
* Django 2.2 :commit:`(patch) <fe886a3b58a93cfbe8864b485f93cb6d426cd1f2>`
1084+
* Django 1.11 :commit:`(patch) <02d97f3c9a88adc890047996e5606180bd1c6166>`

0 commit comments

Comments
 (0)