Django Weblog: Django security releases issued: 5.2.2, 5.1.10, and 4.2.22

The Django team is releasing Django 5.2.2, 5.1.10, and 4.2.22 to address security issues. The releases fix a potential log injection via unescaped request path, which could enable log manipulation or forgery. This issue has a moderate severity according to Django's security policy. The issue arises from internal HTTP response logging using request.path directly, which can write unescaped control characters. The fix involves escaping all positional formatting arguments using a safe encoding. The patches have been applied to Django's main, 5.2, 5.1, and 4.2 branches. The releases can be downloaded from the provided links. The PGP key ID used for this release is Natalia Bidart: 2EE82A8D9470983E. Users are encouraged to upgrade as soon as possible. Potential security issues should be reported via private email to security@djangoproject.com.