← Back to branch summary

~ubuntu-branches/debian/sid/python-django/sid

« back to all changes in this revision

Viewing changes to django/db/models/sql/expressions.py

  • Committer: Package Import Robot
  • Author(s): Luke Faraone
  • Date: 2014-04-21 16:47:14 UTC
  • mfrom: (1.3.14)
  • Revision ID: package-import@ubuntu.com-20140421164714-3mlvyr7y1ssdo9e6
Tags: 1.6.3-1
* New upstream security release.
  - Unexpected code execution using ``reverse()``
  - CVE-2014-0472
  - Caching of anonymous pages could reveal CSRF token
  - CVE-2014-0473
  - MySQL typecasting could result in unexpected matches
  - CVE-2014-0474
* Drop patches 07_translation_encoding_fix and ticket21869.diff; merged
  upstream

Show diffs side-by-side

added added

removed removed

Lines of Context:
django/db/models/sql/expressions.py
108
108
    def evaluate_date_modifier_node(self, node, qn, connection):
109
109
        timedelta = node.children.pop()
110
110
        sql, params = self.evaluate_node(node, qn, connection)
 
111
        node.children.append(timedelta)
111
112
 
112
113
        if timedelta.days == 0 and timedelta.seconds == 0 and \
113
114
                timedelta.microseconds == 0: