Package python-module-django: Information

    Source package: python-module-django
    Version: 1.11.23-alt1
    Build time:  Aug 5, 2019, 08:32 PM in the task #235518
    Category: Development/Python
    Report package bug
    Gear: https://git.altlinux.org/gears/p/python-module-django.git?a=tree…
    Home page: http://www.djangoproject.com/
    License: BSD
    Summary: A high-level Python Web framework that encourages rapid development and clean, pragmatic design.
    Description: 
    A high-level Python Web framework that encourages rapid development and clean, pragmatic design.
    List of rpms provided by this srpm:
    python-module-django (noarch)
    python-module-django-dbbackend-mysql (noarch)
    python-module-django-dbbackend-psycopg2 (noarch)
    python-module-django-dbbackend-sqlite3 (noarch)
    python-module-django-doc (noarch)
    python-module-django-tests (noarch)
    python3-module-django (noarch)
    python3-module-django-dbbackend-mysql (noarch)
    python3-module-django-dbbackend-psycopg2 (noarch)
    python3-module-django-dbbackend-sqlite3 (noarch)
    python3-module-django-tests (noarch)
    Maintainer: Alexey Shabalin
    List of contributors:
    Alexey Shabalin
    Grigory Ustinov
    Ivan Zakharyaschev
    Mikhail Efremov
    Eugeny A. Rostovtsev
    Aleksey Avdeev
    Vladimir V Kamarzin
    Vitaly Kuznetsov
    Andrey Rahmatullin
    Denis Klimov
    Andrew Kornilov
    ns
      1. python3-module-html5lib
      2. python3-module-pbr
      3. python3-module-setuptools
      4. python3-module-six
      5. python3-module-unittest2
      6. python3-modules-sqlite3
      7. python-devel = 2.7
      8. python-module-mock
      9. python-module-setuptools
      10. python-module-six
      11. python-modules-sqlite3
      12. python-modules-wsgiref
      13. rpm-build-python >= 0.8
      14. rpm-build-python3
      15. rpm-build-python3

    Last changed

    Aug. 5, 2019 Alexey Shabalin 1.11.23-alt1
    - 1.11.23
- Fixes for the following security vulnerabilities:
  + CVE-2019-14232 Adjusted regex to avoid backtracking issues when truncating HTML
  + CVE-2019-14233 Prevented excessive HTMLParser recursion in strip_tags() when handling incomplete HTML entities
  + CVE-2019-14234 Protected JSONField/HStoreField key and index lookups against SQL injection
  + CVE-2019-14235 Fixed potential memory exhaustion in django.utils.encoding.uri_to_iri()
    July 16, 2019 Alexey Shabalin 1.11.22-alt2
    - revert rename package to python-module-django1.11
    July 15, 2019 Alexey Shabalin 1.11.22-alt1
    - 1.11.22
- rename package to python-module-django1.11
- Fixes for the following security vulnerabilities:
  + CVE-2019-12781 Incorrect HTTP detection with reverse-proxy connecting via HTTPS
  + CVE-2019-12308 AdminURLFieldWidget XSS
  + CVE-2019-6975 Memory exhaustion in django.utils.numberformat.format()
  + CVE-2019-3498 Content spoofing possibility in the default 404 page
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top