CVE-2025-26699 Information

Description

An issue was discovered in Django 5.1 before 5.1.7 5.0 before 5.0.13 and 4.2 before 4.2.20. The django.utils.text.wrap() method and wordwrap template filter are subject to a potential denial-of-service attack when used with very long strings.

Reference

https://docs.djangoproject.com/en/dev/releases/security/ https://groups.google.com/g/django-announce https://www.djangoproject.com/weblog/2025/mar/06/security-releases/ http://www.openwall.com/lists/oss-security/2025/03/06/12