CVE-2019-14233: Improper Input Validation
(updated )
Due to the behaviour of the underlying HTMLParser, django.utils.html.strip_tags
would be extremely slow to evaluate certain inputs containing large sequences of nested incomplete HTML entities.
References
Detect and mitigate CVE-2019-14233 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →