python-django 2:2.2.19-1 source package in Ubuntu
Changelog
python-django (2:2.2.19-1) unstable; urgency=medium
* New upstream security release:
- CVE-2021-23336: Prevent a web cache poisoning attack via "parameter
cloaking". Django contains a copy of urllib.parse.parse_qsl() which was
added to backport some security fixes. A further security fix has been
issued recently such that parse_qsl() no longer allows using ";" as a
query parameter separator by default. (Closes: #983090)
<https://www.djangoproject.com/weblog/2021/feb/19/security-releases/>
* Refresh patches.
-- Chris Lamb <email address hidden> Fri, 19 Feb 2021 09:22:37 +0000
Upload details
- Uploaded by:
- Debian Python Team
- Uploaded to:
- Sid
- Original maintainer:
- Debian Python Team
- Architectures:
- all
- Section:
- python
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| python-django_2.2.19-1.dsc | 2.7 KiB | 4649c16beea3783fa53f4b4f1eb0620f73b7276fc79899ea970ddcfe7fb362cb |
| python-django_2.2.19.orig.tar.gz | 8.8 MiB | 30c235dec87e05667597e339f194c9fed6c855bda637266ceee891bf9093da43 |
| python-django_2.2.19-1.debian.tar.xz | 26.1 KiB | bab52b16468262f9d2d5df8d76a5509a65f5e11f1ca72485a7bd231a024f72bc |
Available diffs
- diff from 2:2.2.18-1 to 2:2.2.19-1 (4.5 KiB)
No changes file available.
Binary packages built by this source
- python-django-doc: No summary available for python-django-doc in ubuntu hirsute.
No description available for python-django-doc in ubuntu hirsute.
- python3-django: No summary available for python3-django in ubuntu hirsute.
No description available for python3-django in ubuntu hirsute.
