March 4, 2024
Django 3.2.25 fixes a security issue with severity „moderate” and a regression in 3.2.24.
django.utils.text.Truncator.words()¶django.utils.text.Truncator.words() method (with html=True) and
truncatewords_html template filter were subject to a potential
regular expression denial-of-service attack using a suitably crafted string
(follow up to CVE-2019-14232 and CVE-2023-43665).
sie 06, 2024