python-django (1.8.7-1ubuntu5.5) xenial-security; urgency=medium

  * SECURITY UPDATE: Open redirect and possible XSS attack via
    user-supplied numeric redirect URLs
    - debian/patches/CVE-2017-7233.patch: fix is_safe_url() with numeric
      URLs in django/utils/, added tests to
    - CVE-2017-7233
  * SECURITY UPDATE: Open redirect vulnerability in
    - debian/patches/CVE-2017-7234.patch: remove redirect from
    - CVE-2017-7234

Date: 2017-03-29 13:24:14.014529+00:00
Changed-By: Marc Deslauriers <>
Signed-By: Ubuntu Archive Robot 
Sorry, changesfile not available.
Xenial-changes mailing list
Modify settings or unsubscribe at:

Reply via email to