[ubuntu/focal-updates] python-django 2:2.2.12-1ubuntu0.2 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Sep 1 11:28:10 UTC 2020
python-django (2:2.2.12-1ubuntu0.2) focal-security; urgency=medium
* SECURITY UPDATE: Incorrect permissions on intermediate-level
directories on Python 3.7+
- debian/patches/CVE-2020-24583.patch: set umask in
django/core/files/storage.py, added test and test files to tests/*.
- CVE-2020-24583
* SECURITY UPDATE: Permission escalation in intermediate-level
directories of the file system cache on Python 3.7+
- debian/patches/CVE-2020-24584.patch: set umask in
django/core/cache/backends/filebased.py, added test to
tests/cache/tests.py.
- CVE-2020-24584
Date: 2020-08-25 14:42:28.582739+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/python-django/2:2.2.12-1ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list