[Git][security-tracker-team/security-tracker][master] django DSA

Moritz Muehlenhoff jmm at debian.org
Sun Aug 5 11:09:13 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
083b291c by Moritz Muehlenhoff at 2018-08-05T10:08:49Z
django DSA

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -54428,6 +54428,7 @@ CVE-2017-12795
 	RESERVED
 CVE-2017-12794 (In Django 1.10.x before 1.10.8 and 1.11.x before 1.11.5, HTML ...)
 	- python-django 1:1.11.5-1 (low; bug #874415)
+	[stretch] - python-django 1:1.10.7-2+deb9u2
 	[jessie] - python-django <not-affected> (Vulnerable code do not exist)
 	[wheezy] - python-django <not-affected> (Vulnerable code do not exist)
 	NOTE: https://www.djangoproject.com/weblog/2017/sep/05/security-releases/


=====================================
data/DSA/list
=====================================
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -1,3 +1,6 @@
+[05 Aug 2018] DSA-4264-1 python-django - security update
+	{CVE-2018-14574}
+	[stretch] - python-django 1:1.10.7-2+deb9u2
 [04 Aug 2018] DSA-4263-1 cgit - security update
 	{CVE-2018-14912}
 	[stretch] - cgit 1.1+git2.10.2-3+deb9u1


=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -78,9 +78,6 @@ passenger
 php-horde-image
   Chris Lamb proposed debdiff adressing CVE-2017-9773, CVE-2017-9774 and CVE-2017-14650
 --
-python-django (jmm)
-  Maintainer prepared update, asked back for inclusing of no-dsa tagged entries
---
 sssd
   Maintainer prepared an update and proposed debdiff, acked for upload, but update needs further testing before release.
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/083b291c4115b5862e9a28b22f95875df4692499

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/083b291c4115b5862e9a28b22f95875df4692499
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180805/376dce27/attachment.html>

More information about the debian-security-tracker-commits mailing list