UbuntuUpdates.org

Package "python-django-doc"

Name: python-django-doc

Description:

High-level Python web development framework (documentation)

Latest version: 2:2.2.12-1ubuntu0.1
Release: focal (20.04)
Level: security
Repository: main
Head package: python-django
Homepage: http://www.djangoproject.com/

Links


Download "python-django-doc"


Other versions of "python-django-doc" in Focal

Repository Area Version
base main 2:2.2.12-1
updates main 2:2.2.12-1ubuntu0.1

Changelog

Version: 2:2.2.12-1ubuntu0.1 2020-06-03 12:07:16 UTC

  python-django (2:2.2.12-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Potential data leakage via malformed memcached keys
    - debian/patches/CVE-2020-13254.patch: enforced cache key validation in
      memcached backends in django/core/cache/__init__.py,
      django/core/cache/backends/base.py,
      django/core/cache/backends/memcached.py, tests/cache/tests.py.
    - CVE-2020-13254
  * SECURITY UPDATE: Possible XSS via admin ForeignKeyRawIdWidget
    - debian/patches/CVE-2020-13596.patch: fixed potential XSS in admin
      ForeignKeyRawIdWidget in django/contrib/admin/widgets.py,
      tests/admin_widgets/models.py, tests/admin_widgets/tests.py.
    - CVE-2020-13596

 -- Marc Deslauriers <email address hidden> Thu, 28 May 2020 10:10:05 -0400

CVE-2020-13254 RESERVED
CVE-2020-13596 RESERVED



About   -   Send Feedback to @ubuntu_updates