~ubuntu-branches/ubuntu/lucid/python-django/lucid-security

Viewing all changes in revision 32.

  • Committer: Package Import Robot
  • Author(s): Jamie Strandboge
  • Date: 2012-11-09 16:16:26 UTC
  • Revision ID: package-import@ubuntu.com-20121109161626-1vgv6eopza1aehl9
Tags: 1.1.1-2ubuntu1.6
* SECURITY UPDATE: fix Host header poisoning
  - debian/patches/CVE-2012-4520.diff: adjust HttpRequest.get_host() to
    raise django.core.exceptions.SuspiciousOperation if Host headers contain
    potentially dangerous content.
  - CVE-2012-4520
  - LP: #1068486

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: