Django: Security Patch Release and Translation Updates

Django addressed five CVE vulnerabilities affecting caching, SMTP, and signed cookies while updating translations across multiple language catalogs. The project also strengthened contribution quality controls and resolved several admin interface issues.

Duration: PT2M20S

Episode overview

This episode is a short developer briefing from Django.

It explains recent repository work in plain language.

  • Show: Django
  • Published: 2026-06-03T13:04:59Z
  • Audio duration: PT2M20S

Transcript excerpt

This excerpt keeps the crawler page concise. Listen to the episode or use the RSS feed for the full update.

Good morning, it's June 3rd, 2026. Django has just completed a significant security release cycle, patching five CVE vulnerabilities while maintaining active development across internationalization and admin improvements.

The headline story is a coordinated security response addressing critical vulnerabilities in core Django components. Five CVEs were resolved, including issues with cache authorization headers, SMTP connection handling, and signed cookie salt namespace collisions. The fixes span Django's caching middleware, email…

Translation infrastructure saw substantial activity with updates from Transifex merged across multiple branches. Pull request 21404 updated the 6.0.x branch translations under the current policy of reverting plural form changes, while PR 21337 updated source translation catalogs for 6.1.x. The team is preparing to…

The admin interface received focused attention with two key improvements. PR 21406 updated the vendored Select2 library from version 4.0.13 to 4.1.0, adding missing language translations and modernizing the widget foundation. Separately, PR 21411 fixed a bug where disabled JSON fields incorrectly reported changes…

Project maintenance was…

Looking…

Nearby episodes from Django

  1. Async QuerySet Consistency Fix
  2. Admin Interface and Developer Experience Improvements
  3. Model and Infrastructure Fixes
  4. Database Performance and Security Hardening
  5. Error Handling and Developer Tools
  6. JSON Encoder Datetime Formatting Fix
  7. Weekly Recap - Security Hardening & Documentation Polish
  8. Documentation Updates and CI Fixes