Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:alpm/archlinux/python-django@3.1-1
purl pkg:alpm/archlinux/python-django@3.1-1
Next non-vulnerable version 3.1.1-1
Latest non-vulnerable version 5.1.11-1
Risk 4.0
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-mmay-juu6-5ua9
Aliases:
BIT-django-2020-24584
CVE-2020-24584
GHSA-fr28-569j-53c4
PYSEC-2020-34
An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.1.1 (when Python 3.7+ is used). The intermediate-level directories of the filesystem cache had the system's standard umask rather than 0o077.
3.1.1-1
Affected by 0 other vulnerabilities.
VCID-upy5-adtx-n7hg
Aliases:
BIT-django-2020-24583
CVE-2020-24583
GHSA-m6gj-h9gm-gw44
PYSEC-2020-33
An issue was discovered in Django 2.2 before 2.2.16, 3.0 before 3.0.10, and 3.1 before 3.1.1 (when Python 3.7+ is used). FILE_UPLOAD_DIRECTORY_PERMISSIONS mode was not applied to intermediate-level directories created in the process of uploading files. It was also not applied to intermediate-level collected static directories when using the collectstatic management command.
3.1.1-1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T18:26:59.764181+00:00 Arch Linux Importer Affected by VCID-upy5-adtx-n7hg https://security.archlinux.org/AVG-1217 38.0.0
2026-04-01T18:26:59.740763+00:00 Arch Linux Importer Affected by VCID-mmay-juu6-5ua9 https://security.archlinux.org/AVG-1217 38.0.0