Format: 1.8 Date: Fri, 09 Nov 2012 15:53:27 -0600 Source: python-django Binary: python-django python-django-doc Architecture: all i386_translations Version: 1.4.1-2ubuntu0.1 Distribution: quantal Urgency: low Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Jamie Strandboge Description: python-django - High-level Python web development framework python-django-doc - High-level Python web development framework (documentation) Launchpad-Bugs-Fixed: 1068486 Changes: python-django (1.4.1-2ubuntu0.1) quantal-security; urgency=low . * SECURITY UPDATE: fix Host header poisoning - debian/patches/CVE-2012-4520.diff: adjust HttpRequest.get_host() to raise django.core.exceptions.SuspiciousOperation if Host headers contain potentially dangerous content. Patch thanks to Mackenzie Morgan. - CVE-2012-4520 - LP: #1068486 * debian/patches/docs-update-httponly-cookie.diff: update documentation of HttpOnly cookie option to correctly describe changes to 1.4 Checksums-Sha1: 955248ec4f32231ec7389d03a10c8217f4a776b7 5195734 python-django_1.4.1-2ubuntu0.1_all.deb 7ee98d604d4cd0880d172d87e50ea42f95934d5f 2351082 python-django-doc_1.4.1-2ubuntu0.1_all.deb c1179c02bf5b37319db679eff8b3d8f1e6a52cc0 7910498 python-django_1.4.1-2ubuntu0.1_i386_translations.tar.gz Checksums-Sha256: fb0fae10bc9d94089c18be99278ccb02671a13d0f493075caaeefdf9a3267fc1 5195734 python-django_1.4.1-2ubuntu0.1_all.deb e10d41e41ab9b9102b820bdf4ab7badad742ce3936137b9da149c56f706a9689 2351082 python-django-doc_1.4.1-2ubuntu0.1_all.deb aca046590e20fd88e416eb0a50f6e2a7753ae0569cc1621dc601efc4f55b5920 7910498 python-django_1.4.1-2ubuntu0.1_i386_translations.tar.gz Files: a1bdecde1c1bbb47dea9fa89b76272fa 5195734 python optional python-django_1.4.1-2ubuntu0.1_all.deb b30cb7d46559d14771c2dc21a5f6315a 2351082 doc optional python-django-doc_1.4.1-2ubuntu0.1_all.deb 45ddc4ca2cff5043cd13c77dd36cc727 7910498 raw-translations - python-django_1.4.1-2ubuntu0.1_i386_translations.tar.gz Original-Maintainer: Chris Lamb