A python-django security update has been released for Debian GNU/Linux 9 Extended LTS to address a potential denial of service vulnerability.
ELA-944-1 python-django security update
Package : python-django
Version : 1:1.10.7-2+deb9u21 (stretch)
Related CVEs :
CVE-2023-41164
It was discovered that there was a potential denial of service vulnerability in
Django, a popular Python-based web development framework.
Upstream reported that there was a potential vulnerability in
django.utils.encoding.uri_to_iri(). This method was subject to potential DoS
attack via certain inputs with a very large number of Unicode characters.
