python-django 1.2.5-1ubuntu1.2 source package in Ubuntu

Changelog

python-django (1.2.5-1ubuntu1.2) natty-security; urgency=low

  * SECURITY UPDATE: Cross-site scripting in authentication views
    (LP: #1031733)
    - debian/patches/16_fix_cross_site_scripting_in_authentication.diff:
      fix unsafe redirects indjango/http/__init__.py, add test case to
      tests/regressiontests/httpwrappers/tests.py. Patch backport taken
      from Debian Squeeze and fixed for python 2.4 compatibility.
    - CVE-2012-3442
  * SECURITY UPDATE: Denial-of-service in image validation (LP: #1031733)
    - debian/patches/17_fix_dos_in_image_validation.diff: call verify()
      immediately after the constructor in django/forms/fields.py.
    - CVE-2012-3443
  * SECURITY UPDATE: Denial-of-service via get_image_dimensions()
    (LP: #1031733)
    - debian/patches/18_fix_dos_via_get_image_dimensions.diff: don't limit
      chunk size in django/core/files/images.py.
    - CVE-2012-3444
 -- Marc Deslauriers <email address hidden>   Thu, 06 Sep 2012 09:39:29 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Natty
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
python
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Natty: [FULLYBUILT] i386

Downloads

File Size SHA-256 Checksum
python-django_1.2.5.orig.tar.gz 6.1 MiB 649387248296386b589c4a8bf91d34590b43f93b6ebfe6cefbea0ddf4641ccd6
python-django_1.2.5-1ubuntu1.2.debian.tar.gz 23.7 KiB 7a16d4c0bb4f1b8acaa6291d3f62d866497f6946ebe6c88aea25b9ae57548cc7
python-django_1.2.5-1ubuntu1.2.dsc 2.2 KiB dd9b6af189bb5bdcce51e7a63904b97f637a13a5d33957b1172e598d909de43e

View changes file

Binary packages built by this source

python-django: No summary available for python-django in ubuntu natty.

No description available for python-django in ubuntu natty.

python-django-doc: No summary available for python-django-doc in ubuntu natty.

No description available for python-django-doc in ubuntu natty.