PublicDateAtUSN: 2022-04-11 08:00:00 UTC
Candidate: CVE-2022-28346
CRD: 2022-04-11 08:00:00 UTC
PublicDate: 2022-04-12 05:15:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346
 https://www.djangoproject.com/weblog/2022/apr/11/security-releases/
 https://ubuntu.com/security/notices/USN-5373-1
 https://ubuntu.com/security/notices/USN-5373-2
Description:
 An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and
 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are
 subject to SQL injection in column aliases via a crafted dictionary (with
 dictionary expansion) as the passed **kwargs.
Ubuntu-Description: 
Notes: 
Mitigation: 
Bugs: 
Priority: high
Discovered-by:
Assigned-to: mdeslaur
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_python-django:
upstream_python-django: released (3.2.13,2.2.28)
trusty/esm_python-django: released (1.6.11-0ubuntu1.3+esm5)
esm-infra/xenial_python-django: released (1.8.7-1ubuntu5.15+esm5)
bionic_python-django: released (1:1.11.11-1ubuntu1.17)
focal_python-django: released (2:2.2.12-1ubuntu0.11)
impish_python-django: released (2:2.2.24-1ubuntu1.4)
jammy_python-django: released (3.2.12-2ubuntu1)
devel_python-django: released (3.2.12-2ubuntu1)