python-django 1.7.3-1~exp1 source package in Debian
Changelog
python-django (1.7.3-1~exp1) experimental; urgency=high
[ Luke Faraone ]
* New upstream security release.
- WSGI header spoofing via underscore/dash conflation (CVE-2015-0219)
- Possible XSS attack via user-supplied redirect URLs (CVE-2015-0220)
- DoS attack against django.views.static.serve (CVE-2015-0221)
- Database DoS with ModelMultipleChoiceField (CVE-2015-0222)
Closes: #775375
[ Raphaël Hertzog ]
* Add patch fix-24193-python34-test-failure.diff to fix a test failure with
Python3.4.
-- Raphaël Hertzog <email address hidden> Wed, 21 Jan 2015 09:56:19 +0100
Upload details
- Uploaded by:
- Debian Python Modules Team
- Uploaded to:
- Experimental
- Original maintainer:
- Debian Python Modules Team
- Architectures:
- all
- Section:
- python
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| python-django_1.7.3-1~exp1.dsc | 2.3 KiB | c4abbb38ff0be5e786f50e87605befeb119de683d87e4d4ed4e6944a79d04b13 |
| python-django_1.7.3.orig.tar.gz | 7.2 MiB | f226fb8aa438456968d403f6739de1cf2dad128db86f66ee2b41dfebe3645c5b |
| python-django_1.7.3-1~exp1.debian.tar.xz | 22.5 KiB | e2c0e96bdd7f51b70c0f3b637316f0529a868132eb7e2c3b7d3b7255aa9def84 |
No changes file available.
