Accepted python-django 0.95.1-1 (source)

Ubuntu Installer archive at ubuntu.com
Mon Jan 22 15:32:13 GMT 2007 

Accepted:
 OK: python-django_0.95.1-1.dsc
     -> Component: universe Section: python
 OK: python-django_0.95.1.orig.tar.gz
 OK: python-django_0.95.1-1.diff.gz

Origin: Debian/unstable
Format: 1.7
Date: Mon,  22 Jan 2007 15:28:27 +0000
Source: python-django
Binary: python-django
Architecture: source
Version: 0.95.1-1
Distribution: feisty
Urgency: low
Maintainer: Brett Parker <iDunno at sommitrealweird.co.uk>
Changed-By: Daniel T Chen <crimsun at fungus.sh.nu>
Description: 
 python-django - A high-level Python Web framework
Closes: 403761 407489 407519 407521 407607 407786
Changes: 
 python-django (0.95.1-1) unstable; urgency=low
 .
   [ Brett Parker ]
   * New upstream minor release for security bugs:
     - http://www.djangoproject.com/weblog/2007/jan/21/0951/
       - Fixes a small security vulnerability in the script Django's
         internationalization system uses to compile translation files
         (changeset 4360 in the "0.95-bugfixes" branch).
       - fix for a bug in Django's authentication middleware which could cause
         apparent "caching" of a logged-in user (changeset 4361).
       - patch which disables debugging mode in the flup FastCGI package Django
         uses to launch its FastCGI server, which prevents tracebacks from
         bubbling up during production use (changeset 4363).
     Closes: #407786, #407607
   * Sets Recommends to python-psycopg and moves other database engines to
     the Suggests field.
 .
   [ Raphael Hertzog ]
   * Use python-pysqlite2 as default database engine in Recommends. Others are
     in Suggests. Closes: #403761
   * Add python-psycopg2 in Suggests. Closes: #407489
 .
 python-django (0.95-3) unstable; urgency=low
 .
   * Integrate 2 upstream changesets:
     - http://code.djangoproject.com/changeset/3754 as
       debian/patches/04_sec_fix_auth.diff
       Fixes a possible case of mis-authentication due to bad caching.
       Closes: #407521
     - http://code.djangoproject.com/changeset/3592 as
       debian/patches/03_sec_fix_compile-messages.diff
       Fixes an (unlikely) arbitrary command execution if the user is blindly
       running compile-messages.py on a untrusted set of *.po files.
       Closes: #407519
Files: 
 cc4f46e10156431c73eef450f6293663 886 python optional python-django_0.95.1-1.dsc
 07f09d8429916481e09e84fd01e97355 1297839 python optional python-django_0.95.1.orig.tar.gz
 10f4d6bf948b13fc5340fc36bff6ce39 3688 python optional python-django_0.95.1-1.diff.gz

More information about the feisty-changes mailing list