~boyo-hlophe/ubuntu/+source/python-django:applied/debian/jessie

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

561684f... by Brian May <email address hidden> on 2018-03-30

1.7.11-1+deb8u3 (patches applied)

Imported using git-ubuntu import.

aa39cef... by Brian May <email address hidden> on 2018-03-30

Fix CVE-2018-7537 -- DOS in truncate*_html

Gbp-Pq: 0014-CVE-2018-7537.patch.

390a632... by Brian May <email address hidden> on 2018-03-30

Fix CVE-2018-7536 -- DOS in urlize

Gbp-Pq: 0013-CVE-2018-7536.patch.

5c69c8b... by Brian May <email address hidden> on 2018-03-30

Fixed CVE-2016-9014 -- Validated Host header when DEBUG=True.

Gbp-Pq: 0012-Fixed-CVE-2016-9014-Validated-Host-header-when-DEBUG.patch.

c6e301e... by Brian May <email address hidden> on 2018-03-30

Fixed CVE-2016-9013 -- Generated a random database user password when

Gbp-Pq: 0011-Fixed-CVE-2016-9013-Generated-a-random-database-user.patch.

3b0de06... by Brian May <email address hidden> on 2018-03-30

Fixed CVE-2017-7234 -- Fixed open redirect vulnerability in

Gbp-Pq: 0010-Fixed-CVE-2017-7234-Fixed-open-redirect-vulnerabilit.patch.

11ca7a0... by Brian May <email address hidden> on 2018-03-30

Fixed #27912, CVE-2017-7233 -- Fixed is_safe_url() with numeric URLs.

Gbp-Pq: 0009-Fixed-27912-CVE-2017-7233-Fixed-is_safe_url-with-num.patch.

357e045... by Brian May <email address hidden> on 2018-03-30

[1.8.x] Fixed CVE-2016-7401 -- Fixed CSRF protection bypass on a site

Gbp-Pq: 0008-1.8.x-Fixed-CVE-2016-7401-Fixed-CSRF-protection-bypa.patch.

a064c40... by Brian May <email address hidden> on 2018-03-30

CVE-2016-6186: Fixed XSS in admin's add/change related popup.

Gbp-Pq: 0007-CVE-2016-6186-Fixed-XSS-in-admin-s-add-change-relate.patch.

6e116f2... by Brian May <email address hidden> on 2018-03-30

CVE-2016-2513: Fixed user enumeration timing attack during login

Gbp-Pq: 0006-CVE-2016-2513-Fixed-user-enumeration-timing-attack-d.patch.