Fedora Account System
Red Hat Associate
Red Hat Customer
An issue was discovered in Django 4.2 before 4.2.24, 5.1 before 5.1.12, and 5.2 before 5.2.6. FilteredRelation is subject to SQL injection in column aliases, using a suitably crafted dictionary, with dictionary expansion, as the **kwargs passed QuerySet.annotate() or QuerySet.alias().
This issue has been addressed in the following products: Red Hat Ansible Automation Platform 2.4 for RHEL 9 Red Hat Ansible Automation Platform 2.4 for RHEL 8 Via RHSA-2025:16403 https://access.redhat.com/errata/RHSA-2025:16403
This issue has been addressed in the following products: Red Hat Ansible Automation Platform 2.4 for RHEL 9 Red Hat Ansible Automation Platform 2.4 for RHEL 8 Via RHSA-2025:16404 https://access.redhat.com/errata/RHSA-2025:16404
This issue has been addressed in the following products: Red Hat Ansible Automation Platform 2.5 for RHEL 9 Red Hat Ansible Automation Platform 2.5 for RHEL 8 Via RHSA-2025:16487 https://access.redhat.com/errata/RHSA-2025:16487
This issue has been addressed in the following products: Red Hat Ansible Automation Platform 2.5 for RHEL 8 Red Hat Ansible Automation Platform 2.5 for RHEL 9 Via RHSA-2025:16514 https://access.redhat.com/errata/RHSA-2025:16514
This issue has been addressed in the following products: Red Hat OpenStack Platform 17.1 for RHEL 9 Via RHSA-2025:17498 https://access.redhat.com/errata/RHSA-2025:17498
This issue has been addressed in the following products: Red Hat OpenStack Platform 16.2 Via RHSA-2025:17499 https://access.redhat.com/errata/RHSA-2025:17499
This issue has been addressed in the following products: Red Hat OpenStack Services on OpenShift 18.0 Via RHSA-2025:17500 https://access.redhat.com/errata/RHSA-2025:17500
This issue has been addressed in the following products: Red Hat Satellite 6.17 for RHEL 9 Via RHSA-2025:17606 https://access.redhat.com/errata/RHSA-2025:17606
This issue has been addressed in the following products: Red Hat Satellite 6.16 for RHEL 8 Red Hat Satellite 6.16 for RHEL 9 Via RHSA-2025:17613 https://access.redhat.com/errata/RHSA-2025:17613
This issue has been addressed in the following products: Red Hat Satellite 6.15 for RHEL 8 Via RHSA-2025:17614 https://access.redhat.com/errata/RHSA-2025:17614