[ubuntu/xenial-security] python-django 1.8.7-1ubuntu5.2 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Tue Sep 27 12:47:22 UTC 2016

python-django (1.8.7-1ubuntu5.2) xenial-security; urgency=medium

  * SECURITY UPDATE: CSRF protection bypass on a site with Google Analytics
    - debian/patches/CVE-2016-7401.patch: simplify cookie parsing in
      django/http/cookie.py, add tests to tests/httpwrappers/tests.py,
    - CVE-2016-7401

Date: 2016-09-26 13:57:14.138373+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Xenial-changes mailing list