[ubuntu/xenial-security] python-django 1.8.7-1ubuntu5.9 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Mon Jul 1 13:59:15 UTC 2019

python-django (1.8.7-1ubuntu5.9) xenial-security; urgency=medium

  * SECURITY UPDATE: Incorrect HTTP detection with reverse-proxy
    connecting via HTTPS
    - debian/patches/CVE-2019-12781.patch: made HttpRequest always
      trusty SECURE_PROXY_SSL_HEADER if set in django/http/request.py,
      docs/ref/settings.txt and added tests to tests/settings_test/tests.py.
    - CVE-2019-12781

Date: 2019-06-24 17:17:19.334990+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
-------------- next part --------------
Sorry, changesfile not available.

More information about the Xenial-changes mailing list