[ubuntu/xenial-security] python-django 1.8.7-1ubuntu5.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Tue Sep 27 12:47:22 UTC 2016
python-django (1.8.7-1ubuntu5.2) xenial-security; urgency=medium
* SECURITY UPDATE: CSRF protection bypass on a site with Google Analytics
- debian/patches/CVE-2016-7401.patch: simplify cookie parsing in
django/http/cookie.py, add tests to tests/httpwrappers/tests.py,
tests/requests/tests.py.
- CVE-2016-7401
Date: 2016-09-26 13:57:14.138373+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/python-django/1.8.7-1ubuntu5.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list