Hi Chris, On Thu, Feb 25, 2021 at 04:47:34PM +0000, Chris Lamb wrote: > Sébastien Delafond wrote: > > > > > Django is vulnerable because it embeds parse_qsl: > > > > > > > > https://www.djangoproject.com/weblog/2021/feb/19/security-releases/ > > > > > > Security team, let me know if you would like an update for stable. > […] > > we think this should rather go via s-p-u. > > ACK. Have filed #983526 for this purpose.
Can you please add as well the fixes for the other open issues? Will reply there with the same message. Regards, Salvatore
