CVE-2022-28347

Several security issues were fixed in Django ...

Debian Bug report logs - #1009677 python-django: CVE-2022-28346 Package: python-django; Maintainer for python-django is Debian Python Team <team+python@trackerdebianorg>; Source for python-django is src:python-django (PTS, buildd, popcon) Reported by: "Chris Lamb" <lamby@debianorg> Date: Thu, 14 Apr 2022 08:48:02 ...

Synopsis Moderate: Satellite 611 Release Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat Satellite 611 Description Red Hat Satellite is a systems management tool for Linux-basedin ...

Synopsis Important: RHUI 411 release - Security Fixes and Enhancement Update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An updated version of Red Hat Update Infrastructure (RHUI) is now available RHUI 411 introd ...

Synopsis Important: Red Hat Ansible Automation Platform 12 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat Ansible Automation Platform 12Red Hat Product Security ha ...

Synopsis Important: Red Hat Ansible Automation Platform 212 security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update is now available for Red Hat Ansible Automation Platform 21Red Hat Produ ...

Multiple security issues were found in Django, a Python web development framework, which could result in denial of service, SQL injection or cross-site scripting For the stable distribution (bullseye), these problems have been fixed in version 2:2228-1~deb11u1 We recommend that you upgrade your python-django packages For the detailed security ...

A SQL injection issue was discovered in QuerySetexplain() in Django 22 before 2228, 32 before 3213, and 40 before 404 This occurs by passing a crafted dictionary (with dictionary expansion) as the **options argument, and placing the injection payload in an option name ...

QuerySetexplain() method was subject to SQL injection in option names, using a suitably crafted dictionary, with dictionary expansion, as the **options argument ...