Publishing details
Changelog
python-django (1.4.5-1~ubuntu12.04.1~grizzly0) precise; urgency=low
* No-change backport to precise
python-django (1.4.5-1) unstable; urgency=high
* New upstream maintenance release dropping some undesired .pyc files
and fixing a documentation link.
* High urgency due to former security updates.
python-django (1.4.4-1) unstable; urgency=low
* New upstream security and maintenance release. Closes: #701186
https://www.djangoproject.com/weblog/2013/feb/19/security/
Fixes mulptiple security issues:
- Further fixes for Host header poisoning. CVE-2012-4520
- XML attacks via entity expansion. CVE-2013-1665
- Data leakage via admin history log. CVE-2013-0305
- Formset denial-of-service. CVE-2013-0306
* Add gettext to Suggests since it's required for django-admin
compilemessages / makemessages. Closes: #700483
python-django (1.4.3-1) unstable; urgency=high
* New upstream security and maintenance release. Closes: #696535
https://www.djangoproject.com/weblog/2012/dec/10/security/
* Drop debian/patches/01_fix-self-tests.diff, merged upstream.
python-django (1.4.2-2) unstable; urgency=low
* Don't fail self-tests if MANAGERS or ADMINS is defined in settings.py.
Add upstream patch debian/patches/01_fix-self-tests.diff.
Thanks to Jamie Strandboge <email address hidden> for the report.
Closes: #693752 LP: #1080204
python-django (1.4.2-1) unstable; urgency=high
* New upstream security and maintenance release. Closes: #691145
Fixes: CVE-2012-4520
* Drop 01_use_stdlib_htmlparser_when_possible.diff which has been
merged upstream.
python-django (1.4.1-2) unstable; urgency=low
* New patch 01_use_stdlib_htmlparser_when_possible.diff to not override
Python stdlib's HTMLParser with Python versions which are unaffected by
http://bugs.python.org/issue670664 Closes: #683648
Thanks to David Watson <email address hidden> for the patch.
* Update the above patch to use the version committed upstream (commit
57d9ccc).
python-django (1.4.1-1) unstable; urgency=low
* New upstream security and maintenance release. Closes: #683364
Fixes: CVE-2012-3442 CVE-2012-3443 CVE-2012-3444
* Drop 01_disable_broken_test.diff and 04_hyphen-manpage.diff which
have been merged upstream.
python-django (1.4-1) unstable; urgency=low
* New upstream release. Closes: #666003
* Fix watch file to correctly extract the version number from the URL.
* Updated Standards-Version to 3.9.3 (no change needed).
* Drop 01_disable_url_verify_regression_tests.diff since upstream test
suite has been modified to work even without internet connection.
* Update 04_hyphen-manpage.diff to apply again.
* Drop 05_fix_djangodocs_sphinx_ext.diff which has been merged
upstream.
* Update 06_use_debian_geoip_database_as_default.diff to apply on
renamed file.
* Drop 07_fix_for_sphinx1.1.2.diff merged upstream.
* Drop 08_fix_test_week_view_allow_future.diff, merged upstream.
* Add 01_disable_broken_test.diff to disable a test that fails with
the current python 2.7 version in Debian.
-- Openstack Ubuntu Testing Bot <email address hidden> Thu, 21 Mar 2013 10:35:57 -0400
Builds
Built packages
-
python-django
High-level Python web development framework
-
python-django-doc
High-level Python web development framework (documentation)
Package files