| Revision Date: | 2021-02-25 | Version: | 1 |
| Title: | Security update for python-djangorestframework (Important) |
| Description: |
This update for python-djangorestframework fixes the following issues:
Update to 3.11.2
Security: Drop urlize_quoted_links template tag in favour of Django's built-in urlize. Removes a XSS vulnerability for some kinds of content in the browsable API. (boo#1177205, CVE-2020-25626) * update Django for APIs book to 3.0 edition * decode base64 credentials as utf8; adjust tests * Remove compat urls for Django < 2.0
This update was imported from the openSUSE:Leap:15.2:Update update project.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1177205
CVE-2020-25626
openSUSE-SU-2021:0338-1
|
| Platform(s): | SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
SUSE Package Hub for SUSE Linux Enterprise 15 SP2
| Product(s): | |
| Definition Synopsis |
| SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed AND python3-djangorestframework-3.11.2-bp152.2.3.1 is installed
|