diff options
Diffstat (limited to 'docs/releases/4.0.6.txt')
| -rw-r--r-- | docs/releases/4.0.6.txt | 12 |
1 files changed, 9 insertions, 3 deletions
diff --git a/docs/releases/4.0.6.txt b/docs/releases/4.0.6.txt index ee7979161e..d1b6fc6a43 100644 --- a/docs/releases/4.0.6.txt +++ b/docs/releases/4.0.6.txt @@ -6,7 +6,13 @@ Django 4.0.6 release notes Django 4.0.6 fixes a security issue with severity "high" in 4.0.5. -Bugfixes -======== +CVE-2022-34265: Potential SQL injection via ``Trunc(kind)`` and ``Extract(lookup_name)`` arguments +================================================================================================== -* ... +:class:`Trunc() <django.db.models.functions.Trunc>` and +:class:`Extract() <django.db.models.functions.Extract>` database functions were +subject to SQL injection if untrusted data was used as a +``kind``/``lookup_name`` value. + +Applications that constrain the lookup name and kind choice to a known safe +list are unaffected. |