An update for python-django is now available for openEuler-24.03-LTS-SP1 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2025-1643 Final 1.0 1.0 2025-06-20 Initial 2025-06-20 2025-06-20 openEuler SA Tool V1.0 2025-06-20 python-django security update An update for python-django is now available for openEuler-24.03-LTS-SP1 A high-level Python Web framework that encourages rapid development and clean, pragmatic design. Security Fix(es): A vulnerability, which was classified as problematic, was found in Django up to 4.2.21/5.1.9/5.2.1 (Content Management System).CWE is classifying the issue as CWE-117. The product does not neutralize or incorrectly neutralizes output that is written to logs.This is going to have an impact on integrity.Upgrading to version 4.2.22, 5.1.10 or 5.2.2 eliminates this vulnerability.(CVE-2025-48432) An update for python-django is now available for openEuler-24.03-LTS-SP1. openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Medium python-django https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1643 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-48432 https://nvd.nist.gov/vuln/detail/CVE-2025-48432 openEuler-24.03-LTS-SP1 python-django-4.2.15-7.oe2403sp1.src.rpm python-django-help-4.2.15-7.oe2403sp1.noarch.rpm python3-Django-4.2.15-7.oe2403sp1.noarch.rpm A vulnerability, which was classified as problematic, was found in Django up to 4.2.21/5.1.9/5.2.1 (Content Management System).CWE is classifying the issue as CWE-117. The product does not neutralize or incorrectly neutralizes output that is written to logs.This is going to have an impact on integrity.Upgrading to version 4.2.22, 5.1.10 or 5.2.2 eliminates this vulnerability. 2025-06-20 CVE-2025-48432 openEuler-24.03-LTS-SP1 Medium 5.4 AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N python-django security update 2025-06-20 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1643