Django 4.2.20 release notes¶

March 6, 2025

Django 4.2.20 fixes a security issue with severity “moderate” in 4.2.19.

CVE-2025-26699: Potential denial-of-service vulnerability in `django.utils.text.wrap()`¶

The wrap() and wordwrap template filter were subject to a potential denial-of-service attack when used with very long strings.

FAQ: Try the FAQ — it's got answers to many common questions.
Index, Module Index, or Table of Contents: Handy when looking for specific information.
Django Discord Server: Join the Django Discord Community.
Official Django Forum: Join the community on the Django Forum.
Ticket tracker: Report bugs with Django or Django documentation in our ticket tracker.

Offline (Django 5.0): HTML | PDF | ePub
Provided by Read the Docs.