[Python-modules-commits] [python-django] 07/07: releasing package python-django version 1.9.4-1
Luke Faraone
lfaraone at moszumanska.debian.org
Sat Mar 5 21:05:23 UTC 2016
This is an automated email from the git hooks/post-receive script.
lfaraone pushed a commit to branch debian/master
in repository python-django.
commit e4763d41cbcf04c68c231cb7322fb642f62744e0
Author: Luke Faraone <lfaraone at debian.org>
Date: Sat Mar 5 21:04:35 2016 +0000
releasing package python-django version 1.9.4-1
---
debian/changelog | 12 ++++++++++++
1 file changed, 12 insertions(+)
diff --git a/debian/changelog b/debian/changelog
index dc19fab..72db2ca 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,15 @@
+python-django (1.9.4-1) unstable; urgency=high
+
+ * New upstream security release:
+ https://www.djangoproject.com/weblog/2016/mar/01/security-releases/
+ - CVE-2016-2512: Malicious redirect and possible XSS via user-supplied
+ redirect URLs containing basic auth
+ - CVE-2016-2513: User enumeration through timing difference on password
+ hasher work factor upgrade
+ Closes: #816434
+
+ -- Luke Faraone <lfaraone at debian.org> Sat, 05 Mar 2016 20:13:13 +0000
+
python-django (1.9.2-1) unstable; urgency=medium
* New upstream security release fixing:
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/python-modules/packages/python-django.git
More information about the Python-modules-commits
mailing list