[Python-modules-commits] [python-django] annotated tag debian/1.7.11-1+deb8u1 created (now d5d2f01)

Luke Faraone lfaraone at moszumanska.debian.org
Sat Oct 29 20:54:13 UTC 2016 

This is an automated email from the git hooks/post-receive script.

lfaraone pushed a change to annotated tag debian/1.7.11-1+deb8u1
in repository python-django.

        at  d5d2f01   (tag)
   tagging  0bae7719889d6ed94244366439597085317d8625 (commit)
  replaces  debian/1.7.11-1
 tagged by  Luke Faraone
        on  Sat Oct 29 20:53:39 2016 +0000

- Log -----------------------------------------------------------------
as uploaded to jessie-security
-----BEGIN PGP SIGNATURE-----
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=Tk4E
-----END PGP SIGNATURE-----

=?UTF-8?q?Rapha=C3=ABl=20Hertzog?= (1):
      Disable creation of _sources directory by Sphinx

Brett Parker (1):
      Update manual page to refer to django-admin instead of

Claude Paroz (1):
      is_safe_url() crashes with a byestring URL on Python 2

Collin Anderson (1):
      Fixed CVE-2016-7401 -- Fixed CSRF protection bypass on a site

Florian Apolloner (1):
      CVE-2016-2513: Fixed user enumeration timing attack during login

Luke Faraone (4):
      Add debian/tests/; included in 1.7.11-1, but not in git
      Add missing changelog line
      Import python-django_1.7.11-1+deb8u1.dsc
      Import python-django 1.7.11-1+deb8u1

Mark Striemer (1):
      CVE-2016-2512: Prevented spoofing is_safe_url() with basic auth

Raphaël Hertzog (1):
      Merge remote-tracking branch 'origin/debian/jessie-updates' into debian/jessie

Tapio Rantala (1):
      Use Debian GeoIP database path as default

Tim Graham (1):
      CVE-2016-6186: Fixed XSS in admin's add/change related popup.

-----------------------------------------------------------------------

This annotated tag includes the following new commits:

       new  042bc6e   Disable creation of _sources directory by Sphinx
       new  c39958a   Update manual page to refer to django-admin instead of
       new  83d5383   Use Debian GeoIP database path as default
       new  d6b0e58   CVE-2016-2512: Prevented spoofing is_safe_url() with basic auth
       new  3ac6c8e   is_safe_url() crashes with a byestring URL on Python 2
       new  9b29044   CVE-2016-2513: Fixed user enumeration timing attack during login
       new  5f8334e   CVE-2016-6186: Fixed XSS in admin's add/change related popup.
       new  b66a3bc   Fixed CVE-2016-7401 -- Fixed CSRF protection bypass on a site
       new  91d05e9   Import python-django_1.7.11-1+deb8u1.dsc
       new  0bae771   Import python-django 1.7.11-1+deb8u1

The 10 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/python-modules/packages/python-django.git

More information about the Python-modules-commits mailing list