python-django 1.7.6-1ubuntu2 source package in Ubuntu
Changelog
python-django (1.7.6-1ubuntu2) vivid; urgency=medium
* SECURITY UPDATE: denial-of-service possibility with strip_tags
- debian/patches/CVE-2015-2316.patch: fix infinite loop possibility
in django/utils/html.py, added test to
tests/utils_tests/test_html.py.
- CVE-2015-2316
* SECURITY UPDATE: XSS attack via user-supplied redirect URLs
- debian/patches/CVE-2015-2317.patch: reject URLs that start with
control characters in django/utils/http.py, added test to
tests/utils_tests/test_http.py.
- CVE-2015-2317
-- Marc Deslauriers <email address hidden> Fri, 20 Mar 2015 10:18:12 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Vivid
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| python-django_1.7.6.orig.tar.gz | 7.2 MiB | b0f15e0ffe59a2f37cbaf53543f05d2f40c5a755390df03ec0655b5e4a8d4c90 |
| python-django_1.7.6-1ubuntu2.debian.tar.xz | 24.0 KiB | c7304caacc0669165b439ddea73e317c9e6a85c3970daac35d6cce13c7c9a553 |
| python-django_1.7.6-1ubuntu2.dsc | 2.7 KiB | 19ea13fc608623720f0aed2497be322076605aa3adf9dd0bdf9299bc94811d4e |
Available diffs
Binary packages built by this source
- python-django: No summary available for python-django in ubuntu wily.
No description available for python-django in ubuntu wily.
- python-django-common: No summary available for python-django-common in ubuntu vivid.
No description available for python-
django- common in ubuntu vivid.
- python-django-doc: No summary available for python-django-doc in ubuntu wily.
No description available for python-django-doc in ubuntu wily.
- python3-django: No summary available for python3-django in ubuntu vivid.
No description available for python3-django in ubuntu vivid.
