Public bug reported: Binary package hint: python-django
please sync django 0.95-3 from Debian unstable (main) Changelog: python-django (0.95-3) unstable; urgency=low . * Integrate 2 upstream changesets: - http://code.djangoproject.com/changeset/3754 as debian/patches/04_sec_fix_auth.diff Fixes a possible case of mis-authentication due to bad caching. Closes: #407521 - http://code.djangoproject.com/changeset/3592 as debian/patches/03_sec_fix_compile-messages.diff Fixes an (unlikely) arbitrary command execution if the user is blindly running compile-messages.py on a untrusted set of *.po files. Closes: #407519 ** Affects: python-django (Ubuntu) Importance: Undecided Status: Unconfirmed -- please sync django 0.95-3 from Debian unstable (main) https://launchpad.net/bugs/80710 -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs