Publishing details

Published on 2021-04-06
Copied from ubuntu xenial in Private PPA for Ubuntu Security Team by Marc Deslauriers

Changelog

python-django (1.8.7-1ubuntu5.15) xenial-security; urgency=medium

  * SECURITY UPDATE: Potential directory-traversal via uploaded files
    - debian/patches/CVE-2021-28658.patch: properly sanitize filenames in
      django/http/multipartparser.py, tests/file_uploads/tests.py,
      tests/file_uploads/uploadhandler.py, tests/file_uploads/urls.py,
      tests/file_uploads/views.py.
    - CVE-2021-28658

 -- Marc Deslauriers <email address hidden>  Tue, 30 Mar 2021 14:57:56 -0400

Available diffs

diff from 1.8.7-1ubuntu5.14 to 1.8.7-1ubuntu5.15 (3.8 KiB)

Builds

amd64

Built packages

python-django High-level Python web development framework (Python 2 version)

python-django-common High-level Python web development framework (common)

python-django-doc High-level Python web development framework (documentation)

python3-django High-level Python web development framework (Python 3 version)

Package files

python-django-common_1.8.7-1ubuntu5.15_all.deb (1.1 MiB)
python-django-doc_1.8.7-1ubuntu5.15_all.deb (2.6 MiB)
python-django_1.8.7-1ubuntu5.15.debian.tar.xz (53.0 KiB)
python-django_1.8.7-1ubuntu5.15.dsc (2.7 KiB)
python-django_1.8.7-1ubuntu5.15_all.deb (841.8 KiB)
python-django_1.8.7.orig.tar.gz (6.9 MiB)
python3-django_1.8.7-1ubuntu5.15_all.deb (824.5 KiB)