AVG-2123 log

Package python-django
Status Fixed
Severity High
Type insufficient validation
Affected 3.2.4-1
Fixed 3.2.5-1
Current 3.2.9-1 [extra]
Ticket None
Created Thu Jul 1 15:10:43 2021
Issue Severity Remote Type Description
CVE-2021-35042 High Yes Insufficient validation
A security issue has been found in Django before version 3.2.5. Unsanitized user input passed to QuerySet.order_by() could bypass intended column reference...
Date Advisory Package Type
03 Jul 2021 ASA-202107-11 python-django insufficient validation