./www/py-django, Django, a high-level Python Web framework

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.7.5, Package name: py27-django-1.7.5, Maintainer: joerg

Django is a high-level Python Web framework that encourages rapid development
and clean, pragmatic design. Django was designed to make common Web-development
tasks fast and easy.

DEINSTALL [+/-]

Required to run:
[devel/py-setuptools] [lang/python27]

Master sites:

SHA1: b978e46c01e1d544db759a27b0a26acfd262cbd3
RMD160: 55ae7c54635680cc7515f0e0f3c7beaaf0340058
Filesize: 7420.915 KB

Version history: (Expand)


CVS history: (Expand)


   2015-02-26 07:27:06 by Adam Ciarcinski | Files touched by this commit (3)
Log message:
Changes 1.7.5:
Bugfixes:
* Reverted a fix that prevented a migration crash when unapplying \ 
contrib.contenttypes’s or contrib.auth’s first migration (24075) due to \ 
severe impact on the test performance (24251) and problems in multi-database \ 
setups (24298).
* Fixed a regression that prevented custom fields inheriting from \ 
ManyToManyField from being recognized in migrations (24236).
* Fixed crash in contrib.sites migrations when a default database isn’t used \ 
(24332).
* Added the ability to set the isolation level on PostgreSQL with psycopg2 ≥ \ 
2.4.2 (24318). It was advertised as a new feature in Django 1.6 but it didn’t \ 
work in practice.
* Formats for the Azerbaijani locale (az) have been added.
   2015-01-28 07:41:31 by Adam Ciarcinski | Files touched by this commit (2)
Log message:
Changes 1.7.4:
* Fixed a migration crash when unapplying contrib.contenttypes’s or \ 
contrib.auth’s first migration.
* Made the migration’s RenameModel operation rename ManyToManyField tables.
* Fixed a migration crash on MySQL when migrating from a OneToOneField to a \ 
ForeignKey.
* Prevented the static.serve view from producing ResourceWarnings in certain \ 
circumstances.
* Fixed schema check for ManyToManyField to look for internal type instead of \ 
checking class instance, so you can write custom m2m-like fields with the same \ 
behaviour.
   2015-01-14 18:07:12 by Adam Ciarcinski | Files touched by this commit (4)
Log message:
Fixed securify issues:
* WSGI header spoofing via underscore/dash conflation
* Mitigated possible XSS attack via user-supplied redirect URLs
* Denial-of-service attack against django.views.static.serve
* Database denial-of-service with ModelMultipleChoiceField
   2015-01-07 00:07:32 by Joerg Sonnenberger | Files touched by this commit (1)
Log message:
Python 2.6 is no longer supported.
   2015-01-03 16:47:21 by Adam Ciarcinski | Files touched by this commit (6)
Log message:
Django 1.7.2 fixes several bugs in 1.7.1.
Additionally, Django’s vendored version of six, django.utils.six, has been \ 
upgraded to the latest release (1.9.0).
   2014-11-23 15:05:13 by Adam Ciarcinski | Files touched by this commit (2)
Log message:
Changes 1.6.8:
This release fixes a couple regressions in the 1.6.6 security release.
Bugfixes
Allowed related many-to-many fields to be referenced in the admin
Allowed inline and hidden references to admin fields
   2014-08-23 13:13:01 by Adam Ciarcinski | Files touched by this commit (2)
Log message:
Changes 1.6.6:
Security fixes:
* Issue: reverse() can generate URLs pointing to other hosts (CVE-2014-0480)
* Issue: file upload denial of service (CVE-2014-0481)
* Issue: RemoteUserMiddleware session hijacking (CVE-2014-0482)
* Issue: data leakage via querystring manipulation in admin (CVE-2014-0483)
   2014-05-20 13:06:26 by Adam Ciarcinski | Files touched by this commit (2)
Log message:
Changes 1.6.5:
These releases address a caching issue which might lead to cache poisoning and \ 
an incorrect validation of safe redirect targets. Since these issues will affect \ 
the majority of users we strongly encourage everyone to upgrade.