* SECURITY REGRESSION: is_safe_url() with non-unicode url (LP: #1553251)
- debian/patches/CVE-2016-2512-regression.patch: force url to unicode
in django/utils/http.py, added test to
tests/utils_tests/test_http.py.
- CVE-2016-2512
-- Marc Deslauriers <email address hidden> Fri, 04 Mar 2016 11:07:40 -0500
This bug was fixed in the package python-django - 1.6.1-2ubuntu0.13
---------------
python-django (1.6.1-2ubuntu0.13) trusty-security; urgency=medium
* SECURITY REGRESSION: is_safe_url() with non-unicode url (LP: #1553251) patches/ CVE-2016- 2512-regression .patch: force url to unicode utils/http. py, added test to utils_tests/ test_http. py.
- debian/
in django/
tests/
- CVE-2016-2512
-- Marc Deslauriers <email address hidden> Fri, 04 Mar 2016 11:07:40 -0500