python-django 1.4.1-2ubuntu0.4 source package in Ubuntu
Changelog
python-django (1.4.1-2ubuntu0.4) quantal-security; urgency=low * SECURITY UPDATE: denial of service via long passwords (LP: #1225784) - debian/patches/CVE-2013-1443.patch: enforce a maximum password length in django/contrib/auth/forms.py, django/contrib/auth/hashers.py, django/contrib/auth/tests/hashers.py. - CVE-2013-1443 * SECURITY UPDATE: directory traversal with ssi template tag - debian/patches/CVE-2013-4315.patch: properly check absolute path in django/template/defaulttags.py, tests/regressiontests/templates/tests.py. - CVE-2013-4315 * SECURITY UPDATE: possible XSS via is_safe_url - debian/patches/security-is_safe_url.patch: properly reject URLs which specify a scheme other then HTTP or HTTPS. - https://www.djangoproject.com/weblog/2013/aug/13/security-releases-issued/ - No CVE number * debian/patches/fix-validation-tests.patch: fix regression in tests since example.com is now available via https. -- Marc Deslauriers <email address hidden> Fri, 20 Sep 2013 09:05:04 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Quantal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
python-django_1.4.1.orig.tar.gz | 7.3 MiB | 4d8d20eba350d3d29613cc5a6302d5c23730c7f9e150985bc58b3175b755409b |
python-django_1.4.1-2ubuntu0.4.debian.tar.gz | 47.0 KiB | ba2418c57d0fc46fcfba726dd701b44ca6dbeef8dcff6676b1d86eaa1cbe0d69 |
python-django_1.4.1-2ubuntu0.4.dsc | 2.3 KiB | a7c9c152937726a5557005988b163435e2c9ca9e3ccdb8d31ddfbce7ba6c114b |
Available diffs
Binary packages built by this source
- python-django: No summary available for python-django in ubuntu quantal.
No description available for python-django in ubuntu quantal.
- python-django-doc: No summary available for python-django-doc in ubuntu quantal.
No description available for python-django-doc in ubuntu quantal.