Package python-module-django: Information
Binary package: python-module-django
Version: 1.11.23-alt1
Architecture: noarch
Build time: Aug 5, 2019, 08:32 PM in the task #235518
Source package: python-module-django
Category: Development/Python
Report package bugHome page: http://www.djangoproject.com/
License: BSD
Summary: A high-level Python Web framework that encourages rapid development and clean, pragmatic design.
Description:
A high-level Python Web framework that encourages rapid development and clean, pragmatic design.
Maintainer: Alexey Shabalin
List of contributors:
Alexey Shabalin
Grigory Ustinov
Ivan Zakharyaschev
Mikhail Efremov
Eugeny A. Rostovtsev
Aleksey Avdeev
Vladimir V Kamarzin
Vitaly Kuznetsov
Andrey Rahmatullin
Denis Klimov
Andrew Kornilov
ns
Alexey Shabalin
Grigory Ustinov
Ivan Zakharyaschev
Mikhail Efremov
Eugeny A. Rostovtsev
Aleksey Avdeev
Vladimir V Kamarzin
Vitaly Kuznetsov
Andrey Rahmatullin
Denis Klimov
Andrew Kornilov
ns
Last changed
Aug. 5, 2019 Alexey Shabalin 1.11.23-alt1
- 1.11.23 - Fixes for the following security vulnerabilities: + CVE-2019-14232 Adjusted regex to avoid backtracking issues when truncating HTML + CVE-2019-14233 Prevented excessive HTMLParser recursion in strip_tags() when handling incomplete HTML entities + CVE-2019-14234 Protected JSONField/HStoreField key and index lookups against SQL injection + CVE-2019-14235 Fixed potential memory exhaustion in django.utils.encoding.uri_to_iri()
July 16, 2019 Alexey Shabalin 1.11.22-alt2
- revert rename package to python-module-django1.11
July 15, 2019 Alexey Shabalin 1.11.22-alt1
- 1.11.22 - rename package to python-module-django1.11 - Fixes for the following security vulnerabilities: + CVE-2019-12781 Incorrect HTTP detection with reverse-proxy connecting via HTTPS + CVE-2019-12308 AdminURLFieldWidget XSS + CVE-2019-6975 Memory exhaustion in django.utils.numberformat.format() + CVE-2019-3498 Content spoofing possibility in the default 404 page