python-django 2:2.2.12-1ubuntu0.9 source package in Ubuntu
Changelog
python-django (2:2.2.12-1ubuntu0.9) focal-security; urgency=medium * SECURITY UPDATE: Denial-of-service possibility in UserAtributeSimilarityValidator - debian/patches/CVE-2021-45115.patch: prevent DoS in django/contrib/auth/password_validation.py, docs/topics/auth/passwords.txt, tests/auth_tests/test_validators.py. - CVE-2021-45115 * SECURITY UPDATE: Potential information disclosure in dictsort template filter - debian/patches/CVE-2021-45116.patch: properly handle private variables in django/template/defaultfilters.py, docs/ref/templates/builtins.txt, tests/template_tests/filter_tests/test_dictsort.py, tests/template_tests/filter_tests/test_dictsortreversed.py. - CVE-2021-45116 * SECURITY UPDATE: Potential directory-traversal via Storage.save() - debian/patches/CVE-2021-31542-2.patch: fix regression caused by fix for CVE-2021-31542, and add allow_relative_path parameter to validate_file_name(), required by the following patch. - debian/patches/CVE-2021-45452.patch: fix path traversal in django/core/files/storage.py, tests/file_storage/test_generate_filename.py, tests/file_storage/tests.py. - CVE-2021-45452 -- Marc Deslauriers <email address hidden> Tue, 04 Jan 2022 07:29:49 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
python-django_2.2.12.orig.tar.gz | 8.5 MiB | 69897097095f336d5aeef45b4103dceae51c00afa6d3ae198a2a18e519791b7a |
python-django_2.2.12-1ubuntu0.9.debian.tar.xz | 48.5 KiB | c2f1cf0130594136796bedcbe45c79cf021c389e569ef89e57f873681dd88cd1 |
python-django_2.2.12-1ubuntu0.9.dsc | 2.8 KiB | d3e15545ff637938fb895b5207a6bd2d6a2e0997c9554dfdf7d29401bfe70769 |
Available diffs
Binary packages built by this source
- python-django-doc: High-level Python web development framework (documentation)
Django is a high-level web application framework that loosely follows the
model-view-controller design pattern.
.
Python's equivalent to Ruby on Rails, Django lets you build complex
data-driven websites quickly and easily - Django focuses on automating as much
as possible and adhering to the "Don't Repeat Yourself" (DRY) principle.
.
Django additionally emphasizes reusability and "pluggability" of components;
many generic third-party "applications" are available to enhance projects or
to simply to reduce development time even further.
.
This package contains the HTML documentation and example projects.
- python3-django: High-level Python web development framework
Django is a high-level web application framework that loosely follows the
model-view-controller design pattern.
.
Python's equivalent to Ruby on Rails, Django lets you build complex
data-driven websites quickly and easily - Django focuses on automating as much
as possible and adhering to the "Don't Repeat Yourself" (DRY) principle.
.
Django additionally emphasizes reusability and "pluggability" of components;
many generic third-party "applications" are available to enhance projects or
to simply to reduce development time even further.
.
Notable features include:
* An object-relational mapper (ORM)
* Automatic admin interface
* Elegant URL dispatcher
* Form serialization and validation system
* Templating system
* Lightweight, standalone web server for development and testing
* Internationalization support
* Testing framework and client