[ubuntu/trusty-security] python-django 1.6.1-2ubuntu0.13 (Accepted)

Mon Mar 7 12:44:38 UTC 2016

python-django (1.6.1-2ubuntu0.13) trusty-security; urgency=medium

  * SECURITY REGRESSION: is_safe_url() with non-unicode url (LP: #1553251)
    - debian/patches/CVE-2016-2512-regression.patch: force url to unicode
      in django/utils/http.py, added test to
      tests/utils_tests/test_http.py.
    - CVE-2016-2512

Date: 2016-03-04 16:51:15.140705+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/python-django/1.6.1-2ubuntu0.13
-------------- next part --------------
Sorry, changesfile not available.