VulnerableCode Package Details - pkg:deb/debian/python-django@2:2.2.28-1~deb11u5?distro=trixie

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/python-django@2:2.2.28-1~deb11u5?distro=trixie

purl	pkg:deb/debian/python-django@2:2.2.28-1~deb11u5?distro=trixie

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-e87q-1j8h-93hh	An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2.18. Lack of upper-bound limit enforcement in strings passed when performing IPv6 validation could lead to a potential denial-of-service attack. The undocumented and private functions clean_ipv6_address and is_valid_ipv6_address are vulnerable, as is the django.forms.GenericIPAddressField form field. (The django.db.models.GenericIPAddressField model field is not affected.)	BIT-django-2024-56374 CVE-2024-56374 GHSA-qcgg-j2x8-h9g8 PYSEC-2025-1

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T10:30:54.965953+00:00	Debian Importer	Fixing	VCID-e87q-1j8h-93hh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-12T18:15:36.140075+00:00	Debian Importer	Fixing	VCID-e87q-1j8h-93hh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:50:45.222412+00:00	Debian Importer	Fixing	VCID-e87q-1j8h-93hh	https://security-tracker.debian.org/tracker/data/json	38.1.0