python-django 1.1.1-2ubuntu1.3 source package in Ubuntu
Changelog
python-django (1.1.1-2ubuntu1.3) lucid-security; urgency=low * SECURITY UPDATE: flaw in CSRF handling (LP: #719031) - debian/patches/10_CVE-2011-0696.diff: apply full CSRF validation to all requests, regardless of apparent AJAX origin. This is technically backwards-incompatible, but the security risks have been judged to outweigh the compatibility concerns in this case. See the Django project notes for more information: http://www.djangoproject.com/weblog/2011/feb/08/security/ - CVE-2011-0696 * SECURITY UPDATE: potential XSS in file field rendering - debian/patches/11_CVE-2011-0697.diff: properly escape URL in django/contrib/admin/widgets.py - CVE-2011-0697 -- Jamie Strandboge <email address hidden> Tue, 15 Feb 2011 17:11:08 -0600
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Lucid
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
python-django_1.1.1.orig.tar.gz | 5.4 MiB | d65b18319496fc4923b37fdb736e5ba1a90a3a18e2d7eaac7f3ad30738d1f6e4 |
python-django_1.1.1-2ubuntu1.3.diff.gz | 45.4 KiB | b818178155392f59b785cdaea185c109d4b0bdaa13525b533790819a826ee260 |
python-django_1.1.1-2ubuntu1.3.dsc | 2.2 KiB | 3a6ea8212c42fd083056b58f456af04eaf067044798aa1fa815498a2650aefed |
Available diffs
Binary packages built by this source
- python-django: No summary available for python-django in ubuntu lucid.
No description available for python-django in ubuntu lucid.
- python-django-doc: No summary available for python-django-doc in ubuntu lucid.
No description available for python-django-doc in ubuntu lucid.