Accepted python-django 1.6.5-1~tanglu2 (source)

Thomas Funk t.funk at web.de
Sat Sep 20 17:32:04 EDT 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sat, 20 Sep 2014 23:06:08 +0200
Source: python-django
Binary: python-django python-django-doc
Architecture: source
Version: 1.6.5-1~tanglu2
Distribution: aequorea-updates
Urgency: high
Maintainer: Debian Python Modules Team <python-modules-team at lists.alioth.debian.org>
Changed-By: Thomas Funk <t.funk at web.de>
Description:
 python-django - High-level Python web development framework
 python-django-doc - High-level Python web development framework (documentation)
Changes:
 python-django (1.6.5-1~tanglu2) aequorea-updates; urgency=high
 .
   * DSA-3010-1 security update:
     - reverse() can generate URLs pointing to other hosts (CVE-2014-0480)
     - file upload denial of service (CVE-2014-0481)
     - RemoteUserMiddleware session hijacking (CVE-2014-0482)
     - data leakage via querystring manipulation in admin (CVE-2014-0483)
Checksums-Sha1:
 eccdc57c08ff6486e8e9552a776083efddc4e0f1 2259 python-django_1.6.5-1~tanglu2.dsc
 8d14c1dfdac2922be8e8264bf5dc7bb98f8a3fff 24132 python-django_1.6.5-1~tanglu2.debian.tar.xz
Checksums-Sha256:
 26f919c11740b45f5db3bede2931b0fcc6cdb0ef3fb2005760fbadab08ca8747 2259 python-django_1.6.5-1~tanglu2.dsc
 e7953490f12dfc230720379f34bd6a7afcd755deee4314bd8a0c43a20275c87a 24132 python-django_1.6.5-1~tanglu2.debian.tar.xz
Files:
 9aad9fe843e9d85a79f9ca25ab3b7915 2259 python optional python-django_1.6.5-1~tanglu2.dsc
 4408ba79172f8f2eb8f413837e11b231 24132 python optional python-django_1.6.5-1~tanglu2.debian.tar.xz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=Cc5Q
-----END PGP SIGNATURE-----



More information about the Tanglu-changes mailing list