Ubuntu
python-django package

Bug #1031733
Comment #11

Comment 11 for bug 1031733

Revision history for this message

Launchpad Janitor (janitor) wrote on 2012-09-10:

#11

This bug was fixed in the package python-django - 1.3.1-4ubuntu1.2

---------------
python-django (1.3.1-4ubuntu1.2) precise-security; urgency=high

  [ Scott Kitterman ]
  * SECURITY UPDATE: multiple issues (LP: #1031733)
  * References CVE-2012-3442 CVE-2012-3443 CVE-2012-3444
    https://www.djangoproject.com/weblog/2012/jul/30/security-releases-issued/
  * New upstream release to address three security issues:
    - Cross-site scripting in authentication views
    - Denial-of-service in image validation
    - Denial-of-service via get_image_dimensions()
  * Added debian/patches/security_http_redirects,
    security_image_uploading_two, and security_image_uploading cherry picked
    from upstream git

  [ Marc Deslauriers ]
  * debian/patches/security_http_redirects: remove unrelated changes, add
    python 2.4 regression fix.
-- Marc Deslauriers <email address hidden> Thu, 06 Sep 2012 08:36:28 -0400

Ubuntupython-django package

Comment 11 for bug 1031733

Ubuntu
python-django package