[ubuntu-cloud-archive/grizzly-proposed] python-django (Accepted)
James Page
james.page at ubuntu.com
Mon Mar 25 09:27:41 UTC 2013
python-django (1.4.5-1~cloud0) precise-grizzly; urgency=low
.
* Re-sync with raring release version.
.
python-django (1.4.5-1) unstable; urgency=high
.
* New upstream maintenance release dropping some undesired .pyc files
and fixing a documentation link.
* High urgency due to former security updates.
.
python-django (1.4.4-1) unstable; urgency=low
.
* New upstream security and maintenance release. Closes: #701186
https://www.djangoproject.com/weblog/2013/feb/19/security/
Fixes mulptiple security issues:
- Further fixes for Host header poisoning. CVE-2012-4520
- XML attacks via entity expansion. CVE-2013-1665
- Data leakage via admin history log. CVE-2013-0305
- Formset denial-of-service. CVE-2013-0306
* Add gettext to Suggests since it's required for django-admin
compilemessages / makemessages. Closes: #700483
Date: Thu, 21 Mar 2013 12:35:27 +0000
Changed-By: James Page <james.page at ubuntu.com>
Signed-By: James Page <james.page at ubuntu.com>
Published-By: James Page <james.page at ubuntu.com>
More information about the Cloud-archive-changes
mailing list