python-django 1.2.3-1ubuntu0.2.10.10.2 source package in Ubuntu
Changelog
python-django (1.2.3-1ubuntu0.2.10.10.2) maverick-security; urgency=low * SECURITY UPDATE: flaw in CSRF handling (LP: #719031) - debian/patches/09_CVE-2011-0696.diff: apply full CSRF validation to all requests, regardless of apparent AJAX origin. This is technically backwards-incompatible, but the security risks have been judged to outweigh the compatibility concerns in this case. See the Django project notes for more information: http://www.djangoproject.com/weblog/2011/feb/08/security/ - CVE-2011-0696 * SECURITY UPDATE: potential XSS in file field rendering - debian/patches/10_admin_widgets-to-unittest.diff: prepare testsuite for security fix tests - debian/patches/11_CVE-2011-0697.diff: properly escape URL in django/contrib/admin/widgets.py - CVE-2011-0697 -- Jamie Strandboge <email address hidden> Tue, 15 Feb 2011 17:04:19 -0600
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Maverick
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
python-django_1.2.3.orig.tar.gz | 6.0 MiB | cb830f6038b78037647150d977f6cd5cf2bfd731f1788ecf8758a03c213a0f84 |
python-django_1.2.3-1ubuntu0.2.10.10.2.debian.tar.gz | 27.1 KiB | 41b236d135fbb56fa2eec03460c5fcbdc7ab491e7453da97037b6f4a437aad00 |
python-django_1.2.3-1ubuntu0.2.10.10.2.dsc | 2.2 KiB | 30b1770cac7108a68514ec0d5579d127c6342eb0c410d2a120ffda18d218be7c |
Available diffs
Binary packages built by this source
- python-django: No summary available for python-django in ubuntu maverick.
No description available for python-django in ubuntu maverick.
- python-django-doc: No summary available for python-django-doc in ubuntu maverick.
No description available for python-django-doc in ubuntu maverick.