[ubuntu/focal-updates] python-django 2:2.2.12-1ubuntu0.13 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Thu Aug 4 17:01:26 UTC 2022
python-django (2:2.2.12-1ubuntu0.13) focal-security; urgency=medium
* SECURITY UPDATE: Potential reflected file download
- debian/patches/CVE-2022-36359.patch: escaped filename in
Content-Disposition header in django/http/response.py,
tests/responses/test_fileresponse.py.
- CVE-2022-36359
Date: 2022-07-27 16:30:08.376979+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/python-django/2:2.2.12-1ubuntu0.13
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list