Changes 1.8.3:

* Denial-of-service possibility by filling session store
* Header injection possibility since validators accept newlines in input
* Denial-of-service possibility in URL validation
* Bugfixes
This commit is contained in:
adam 2015-07-17 15:50:53 +00:00
parent 2cd480ff59
commit 9ab9cc94a3
3 changed files with 300 additions and 1151 deletions

View file

@ -1,6 +1,6 @@
# $NetBSD: Makefile,v 1.62 2015/04/13 23:12:43 rodent Exp $
# $NetBSD: Makefile,v 1.63 2015/07/17 15:50:53 adam Exp $
DISTNAME= Django-1.7.7
DISTNAME= Django-1.8.3
PKGNAME= ${PYPKGPREFIX}-${DISTNAME:tl}
CATEGORIES= www python
MASTER_SITES= http://www.djangoproject.com/m/releases/${PKGVERSION_NOREV:R}/

File diff suppressed because it is too large Load diff

View file

@ -1,5 +1,5 @@
$NetBSD: distinfo,v 1.44 2015/03/19 09:53:45 adam Exp $
$NetBSD: distinfo,v 1.45 2015/07/17 15:50:53 adam Exp $
SHA1 (Django-1.7.7.tar.gz) = 614cc9f8e1af6630c54300f6bdd88e7b783614c3
RMD160 (Django-1.7.7.tar.gz) = 4a1f57afaac786f953498ccd4568b514f7153fd0
Size (Django-1.7.7.tar.gz) = 7603286 bytes
SHA1 (Django-1.8.3.tar.gz) = 229dae14aa42169e2e2a6ecb1e00e75f0d57ed35
RMD160 (Django-1.8.3.tar.gz) = 4a54b63b3408d37c1defe549a622aa4ef228eac6
Size (Django-1.8.3.tar.gz) = 7284327 bytes