Explore top 10 tips to secure your open-source projects now. Read More
×
Django could be made to run programs if it received specially crafted
network traffic.
Software Description:
- python-django: High-level Python web development framework
Details:
It was discovered that Django incorrectly handled certain characters in
queries. An attacker could possibly use this issue to execute arbitrary SQL
commands.
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.10
python3-django 3:5.2.4-1ubuntu2.1
Ubuntu 25.04
python3-django 3:4.2.18-1ubuntu1.6
Ubuntu 24.04 LTS
python3-django 3:4.2.11-1ubuntu1.12
Ubuntu 22.04 LTS
python3-django 2:3.2.12-2ubuntu1.23
Ubuntu 20.04 LTS
python3-django 2:2.2.12-1ubuntu0.29+esm5
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.https://ubuntu.com/security/notices/USN-7859-1
CVE-2025-64459
Get the latest Linux and open source security news straight to your inbox.