-
Committer:
Package Import Robot
-
Author(s):
Luke Faraone
-
Date:
2014-04-21 16:47:14 UTC
-
mfrom:
(1.3.14)
-
Revision ID:
package-import@ubuntu.com-20140421164714-3mlvyr7y1ssdo9e6
Tags: 1.6.3-1
* New upstream security release.
- Unexpected code execution using ``reverse()``
- CVE-2014-0472
- Caching of anonymous pages could reveal CSRF token
- CVE-2014-0473
- MySQL typecasting could result in unexpected matches
- CVE-2014-0474
* Drop patches 07_translation_encoding_fix and ticket21869.diff; merged
upstream