Ubuntu

“python-django” 1.3-2ubuntu1.3 source package in The Oneiric Ocelot

Publishing history

1.3-2ubuntu1.3
SUPERSEDED: Oneiric pocket Updates in component main and section python
  • Removed from disk on 2012-11-17.
  • Removal requested on 2012-11-17.
  • Superseded on 2012-11-16 by python-django - 1.3-2ubuntu1.4
  • Published on 2012-09-10
  • Copied from ubuntu oneiric in Private PPA for Ubuntu Security Team by Ubuntu Archive Robot
1.3-2ubuntu1.3
SUPERSEDED: Oneiric pocket Security in component main and section python
  • Removed from disk on 2012-11-17.
  • Removal requested on 2012-11-16.
  • Superseded on 2012-11-15 by python-django - 1.3-2ubuntu1.4
  • Published on 2012-09-10
  • Copied from ubuntu oneiric in Private PPA for Ubuntu Security Team by Marc Deslauriers

Changelog

python-django (1.3-2ubuntu1.3) oneiric-security; urgency=low

  [ Scott Kitterman ]
  * SECURITY UPDATE: multiple issues (LP: #1031733)
  * References CVE-2012-3442 CVE-2012-3443 CVE-2012-3444
    https://www.djangoproject.com/weblog/2012/jul/30/security-releases-issued/
  * New upstream release to address three security issues:
    - Cross-site scripting in authentication views
    - Denial-of-service in image validation
    - Denial-of-service via get_image_dimensions()
  * Added debian/patches/security_http_redirects,
    security_image_uploading_two, and security_image_uploading cherry picked
    from upstream git

  [ Steve Beattie ]
  * added debian/patches/10_fix_testsuite_failure.patch: adjust
    test_week_view_allow_future to ensure the first week of the year is
    selected

  [ Marc Deslauriers ]
  * debian/patches/security_http_redirects: remove unrelated changes, add
    python 2.4 regression fix.
 -- Marc Deslauriers <email address hidden>   Thu, 06 Sep 2012 08:40:28 -0400