[SRU] dajaxice crashes with django patched for the flaw in CSRF handling
Bug #723585 reported by
Jorge Bastida
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
dajaxice (Debian) |
Fix Released
|
Unknown
|
|||
dajaxice (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Lucid |
Fix Released
|
High
|
Unassigned | ||
Maverick |
Fix Released
|
High
|
Unassigned |
Bug Description
TEST CASE:
Versions: 0.1.0 (Lucid) and 0.1.5 (Maverick)
Install python-
Error:
python-
Regression:
I think there is no options for regression, the patches are imported from 0.1.8.1 by upstream developer.
Related with security bug in python-django (LP: #719031)
You can find attached, the diff that fixes the bug for both versions
I'm django-dajaxice lead developer.
Changed in dajaxice (Ubuntu): | |
importance: | Undecided → High |
status: | New → Confirmed |
summary: |
- dajaxice crashes with django patched for the flaw in CSRF handling + [SRU] dajaxice crashes with django patched for the flaw in CSRF handling |
description: | updated |
tags: |
added: verification-done removed: verification-needed |
Changed in dajaxice (Debian): | |
status: | Unknown → Confirmed |
Changed in dajaxice (Debian): | |
status: | Confirmed → Fix Committed |
Changed in dajaxice (Debian): | |
status: | Fix Committed → Fix Released |
tags: | added: testcase |
To post a comment you must log in.
Fixed in 0.1.8.1-1 package upload.