python-django 1.2.5-1ubuntu1.2 source package in Ubuntu
Changelog
python-django (1.2.5-1ubuntu1.2) natty-security; urgency=low
* SECURITY UPDATE: Cross-site scripting in authentication views
(LP: #1031733)
- debian/patches/16_fix_cross_site_scripting_in_authentication.diff:
fix unsafe redirects indjango/http/__init__.py, add test case to
tests/regressiontests/httpwrappers/tests.py. Patch backport taken
from Debian Squeeze and fixed for python 2.4 compatibility.
- CVE-2012-3442
* SECURITY UPDATE: Denial-of-service in image validation (LP: #1031733)
- debian/patches/17_fix_dos_in_image_validation.diff: call verify()
immediately after the constructor in django/forms/fields.py.
- CVE-2012-3443
* SECURITY UPDATE: Denial-of-service via get_image_dimensions()
(LP: #1031733)
- debian/patches/18_fix_dos_via_get_image_dimensions.diff: don't limit
chunk size in django/core/files/images.py.
- CVE-2012-3444
-- Marc Deslauriers <email address hidden> Thu, 06 Sep 2012 09:39:29 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Natty
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- python
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| python-django_1.2.5.orig.tar.gz | 6.1 MiB | 649387248296386b589c4a8bf91d34590b43f93b6ebfe6cefbea0ddf4641ccd6 |
| python-django_1.2.5-1ubuntu1.2.debian.tar.gz | 23.7 KiB | 7a16d4c0bb4f1b8acaa6291d3f62d866497f6946ebe6c88aea25b9ae57548cc7 |
| python-django_1.2.5-1ubuntu1.2.dsc | 2.2 KiB | dd9b6af189bb5bdcce51e7a63904b97f637a13a5d33957b1172e598d909de43e |
Available diffs
Binary packages built by this source
- python-django: No summary available for python-django in ubuntu natty.
No description available for python-django in ubuntu natty.
- python-django-doc: No summary available for python-django-doc in ubuntu natty.
No description available for python-django-doc in ubuntu natty.
