Ubuntu
python-django package

fix a test failure seen with Python 2.7.9

Bug #1433376 reported by Matthias Klose
10
This bug affects 1 person
Affects Status Importance Assigned to Milestone
python-django (Ubuntu)
Fix Released
Undecided
Unassigned
Trusty
Fix Released
Undecided
Unassigned

Bug Description

this fixes a test failure seen in a test rebuild of trusty with a newer python version. it's not clear if we will update to this new version, but the fix for this is obvious.

ERROR: utils_tests.test_jslex (unittest.loader.ModuleImportFailure)
----------------------------------------------------------------------
ImportError: Failed to import test module: utils_tests.test_jslex
Traceback (most recent call last):
  File "/usr/lib/python2.7/unittest/loader.py", line 254, in _find_tests
    module = self._get_module_from_name(name)
  File "/usr/lib/python2.7/unittest/loader.py", line 232, in _get_module_from_name
    __import__(name)
  File "/build/buildd/python-django-1.6.1/tests/utils_tests/test_jslex.py", line 26
SyntaxError: Non-ASCII character '\xc6' in file /build/buildd/python-django-1.6.1/tests/utils_tests/test_jslex.py on line 26, but no encoding declared; see http://python.org/dev/peps/pep-0263/ for details

----------------------------------------------------------------------
Ran 5909 tests in 174.694s

FAILED (errors=1, skipped=505, expected failures=11)

CVE References

Revision history for this message
Matthias Klose (doko) wrote :
Changed in python-django (Ubuntu):
status: New → Fix Released
Matthias Klose (doko)
tags: added: ftbfs
Revision history for this message
Brian Murray (brian-murray) wrote : Please test proposed package

Hello Matthias, or anyone else affected,

Accepted python-django into trusty-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/python-django/1.6.1-2ubuntu0.7 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, and change the tag from verification-needed to verification-done. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

Changed in python-django (Ubuntu Trusty):
status: New → Fix Committed
tags: added: verification-needed
Revision history for this message
Matthias Klose (doko) wrote :

the package builds and passes the tests, and also verified that it passes the tests with python 2.7.9

tags: added: verification-done
removed: verification-needed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package python-django - 1.6.1-2ubuntu0.8

---------------
python-django (1.6.1-2ubuntu0.8) trusty-security; urgency=medium

  * SECURITY UPDATE: denial-of-service possibility with strip_tags
    - debian/patches/CVE-2015-2316.patch: improve and fix infinite loop
      possibility in django/utils/html.py, added tests to
      tests/utils_tests/test_html.py, clarified documentation in
      docs/ref/templates/builtins.txt, docs/ref/utils.txt.
    - CVE-2015-2316
  * SECURITY UPDATE: XSS attack via user-supplied redirect URLs
    - debian/patches/CVE-2015-2317.patch: reject URLs that start with
      control characters in django/utils/http.py, added test to
      tests/utils_tests/test_http.py.
    - CVE-2015-2317
 -- Marc Deslauriers <email address hidden> Fri, 20 Mar 2015 10:34:50 -0400

Changed in python-django (Ubuntu Trusty):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.