[Python-modules-team] Bug#904138: python-django: Update python-django backports

Herbert Parentes Fortes Neto hpfn at debian.org
Fri Jul 20 14:09:09 BST 2018


Source: python-django
Severity: normal

Dear Maintainer,

The python-django Debian package - stable-sec - is CVE-2017-12794 
vulnerable. Probably because stable-bpo offers 1:1.11.10-1.

But version 1:1.11.11-1 also has a security fix - CVE-2018-7536. And
version 1:1.11.14-1 is on testing since 2018-07-05. Fifteen days.

Can version 1:1.11.14-1 be part of backports? I volunteer if necessary.



Regards,
Herbert


-- System Information:
Debian Release: 9.5
  APT prefers stable-updates
  APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)

Kernel: Linux 4.9.0-7-amd64 (SMP w/4 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8), LANGUAGE=pt_BR:pt:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)



More information about the Python-modules-team mailing list