This bug was fixed in the package python-django - 0.96.1-2ubuntu2.1
---------------
python-django (0.96.1-2ubuntu2.1) hardy-security; urgency=low
* SECURITY UPDATE: security vulnerability in django admin
* debian/patches/05_CVE-2008-2302_fix.diff: added upstream fix
escaping request path in login page of admin site.(LP: #234631)
* References:
CVE link: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2302
upstream announce: http://www.djangoproject.com/weblog/2008/may/14/security/
upstream fix: http://code.djangoproject.com/changeset/7527
-- Andrea Gasparini <[EMAIL PROTECTED]> Thu, 29 May 2008 17:00:38
+0200
** Changed in: python-django (Ubuntu Hardy)
Status: Fix Committed => Fix Released
** Changed in: python-django (Ubuntu Gutsy)
Status: Fix Committed => Fix Released
--
security vulnerability in django admin
https://bugs.launchpad.net/bugs/234631
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
