Ubuntu
python-django package

please sync django 0.95-3 from Debian unstable (main)

Bug #80710 reported by Lionel Porcheron
4
Affects Status Importance Assigned to Milestone
python-django (Ubuntu)
Fix Released
Medium
Tollef Fog Heen

Bug Description

Binary package hint: python-django

please sync django 0.95-3 from Debian unstable (main)

Changelog:

 python-django (0.95-3) unstable; urgency=low
 .
   * Integrate 2 upstream changesets:
     - http://code.djangoproject.com/changeset/3754 as
       debian/patches/04_sec_fix_auth.diff
       Fixes a possible case of mis-authentication due to bad caching.
       Closes: #407521
     - http://code.djangoproject.com/changeset/3592 as
       debian/patches/03_sec_fix_compile-messages.diff
       Fixes an (unlikely) arbitrary command execution if the user is blindly
       running compile-messages.py on a untrusted set of *.po files.
       Closes: #407519

Revision history for this message
Daniel T Chen (crimsun) wrote :

Sync request ACKed.

Changed in python-django:
importance: Undecided → Medium
status: Unconfirmed → Confirmed
Revision history for this message
Tollef Fog Heen (tfheen) wrote :

[Updating] python-django (0.95-2 [Ubuntu] < 0.95.1-1 [Debian])
 * Trying to add python-django...
  - <python-django_0.95.1-1.diff.gz: downloading from http://ftp.debian.org/debian/>
  - <python-django_0.95.1.orig.tar.gz: downloading from http://ftp.debian.org/debian/>
  - <python-django_0.95.1-1.dsc: downloading from http://ftp.debian.org/debian/>
I: python-django [universe] -> python-django_0.95-2 [universe].

Changed in python-django:
assignee: nobody → tfheen
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.