Ubuntu
python-django package

python-django 1:1.11.22-1ubuntu1.4 source package in Ubuntu

Changelog

python-django (1:1.11.22-1ubuntu1.4) eoan-security; urgency=medium

  * SECURITY UPDATE: Potential data leakage via malformed memcached keys
    - debian/patches/CVE-2020-13254.patch: enforced cache key validation in
      memcached backends in django/core/cache/__init__.py,
      django/core/cache/backends/base.py,
      django/core/cache/backends/memcached.py, tests/cache/tests.py.
    - CVE-2020-13254
  * SECURITY UPDATE: Possible XSS via admin ForeignKeyRawIdWidget
    - debian/patches/CVE-2020-13596.patch: fixed potential XSS in admin
      ForeignKeyRawIdWidget in django/contrib/admin/widgets.py,
      tests/admin_widgets/models.py, tests/admin_widgets/tests.py.
    - CVE-2020-13596

 -- Marc Deslauriers <email address hidden>  Thu, 28 May 2020 10:28:03 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Eoan
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
python
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Eoan: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
python-django_1.11.22.orig.tar.gz 7.6 MiB 830d5d40a1705089502bba70605ab3246831440ffc16d1501dfeeef5f4b9c845
python-django_1.11.22-1ubuntu1.4.debian.tar.xz 37.7 KiB 374c903ff8ad95985c3fb8ffa7a8c001d505850d1c5af49d796cb6f333220c8a
python-django_1.11.22-1ubuntu1.4.dsc 3.3 KiB cbb42388fc2d219f5275b26e8a5fc6b05e731843c8d04adc06a10499635ebf15

View changes file

Binary packages built by this source

python-django: No summary available for python-django in ubuntu eoan.

No description available for python-django in ubuntu eoan.

python-django-common: No summary available for python-django-common in ubuntu eoan.

No description available for python-django-common in ubuntu eoan.

python-django-doc: No summary available for python-django-doc in ubuntu eoan.

No description available for python-django-doc in ubuntu eoan.

python3-django: No summary available for python3-django in ubuntu eoan.

No description available for python3-django in ubuntu eoan.