Package "python-django"

Name:	python-django
Description:	This package is just an umbrella for a group of other packages, it has no description. Description samples from packages in group: High-level Python web development framework (documentation) High-level Python web development framework
Latest version:	2:2.2.12-1ubuntu0.2
Release:	focal (20.04)
Level:	security
Repository:	main

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Other versions of "python-django" in Focal

Repository	Area	Version
base	main	2:2.2.12-1
updates	main	2:2.2.12-1ubuntu0.2

Packages in group

Deleted packages are displayed in grey.

Changelog

Version: 2:2.2.12-1ubuntu0.2 2020-09-01 12:06:26 UTC

Version: 2:2.2.12-1ubuntu0.2	2020-09-01 12:06:26 UTC
python-django (2:2.2.12-1ubuntu0.2) focal-security; urgency=medium * SECURITY UPDATE: Incorrect permissions on intermediate-level directories on Python 3.7+ - debian/patches/CVE-2020-24583.patch: set umask in django/core/files/storage.py, added test and test files to tests/. - CVE-2020-24583 SECURITY UPDATE: Permission escalation in intermediate-level directories of the file system cache on Python 3.7+ - debian/patches/CVE-2020-24584.patch: set umask in django/core/cache/backends/filebased.py, added test to tests/cache/tests.py. - CVE-2020-24584 -- Marc Deslauriers <email address hidden> Tue, 25 Aug 2020 09:58:36 -0400
Source diff to previous version

python-django (2:2.2.12-1ubuntu0.2) focal-security; urgency=medium * SECURITY UPDATE: Incorrect permissions on intermediate-level directories on Python 3.7+ - debian/patches/CVE-2020-24583.patch: set umask in django/core/files/storage.py, added test and test files to tests/*. - CVE-2020-24583 * SECURITY UPDATE: Permission escalation in intermediate-level directories of the file system cache on Python 3.7+ - debian/patches/CVE-2020-24584.patch: set umask in django/core/cache/backends/filebased.py, added test to tests/cache/tests.py. - CVE-2020-24584 -- Marc Deslauriers <email address hidden> Tue, 25 Aug 2020 09:58:36 -0400

Source diff to previous version

Version: 2:2.2.12-1ubuntu0.1 2020-06-03 12:07:16 UTC

python-django (2:2.2.12-1ubuntu0.1) focal-security; urgency=medium * SECURITY UPDATE: Potential data leakage via malformed memcached keys - debian/patches/CVE-2020-13254.patch: enforced cache key validation in memcached backends in django/core/cache/__init__.py, django/core/cache/backends/base.py, django/core/cache/backends/memcached.py, tests/cache/tests.py. - CVE-2020-13254 * SECURITY UPDATE: Possible XSS via admin ForeignKeyRawIdWidget - debian/patches/CVE-2020-13596.patch: fixed potential XSS in admin ForeignKeyRawIdWidget in django/contrib/admin/widgets.py, tests/admin_widgets/models.py, tests/admin_widgets/tests.py. - CVE-2020-13596 -- Marc Deslauriers <email address hidden> Thu, 28 May 2020 10:10:05 -0400

CVE-2020-13254	RESERVED
CVE-2020-13596	RESERVED

About - Send Feedback to @ubuntu_updates

Package "python-django"

Links

Other versions of "python-django" in Focal

Packages in group

Changelog

Tweets

Share this page

Bookmarks

Latest updates

proposed

updates

security

PPA updates