Subject: CVS commit: pkgsrc/www/py-django14
From: Adam Ciarcinski
Date: 2014-08-23 14:16:45
Message id: 20140823121645.88CA796@cvs.netbsd.org
Log Message:
Changes 1.4.14:
Security fixes:
* Issue: reverse() can generate URLs pointing to other hosts (CVE-2014-0480)
* Issue: file upload denial of service (CVE-2014-0481)
* Issue: RemoteUserMiddleware session hijacking (CVE-2014-0482)
* Issue: data leakage via querystring manipulation in admin (CVE-2014-0483)
Files:
RevisionActionfile
1.8modifypkgsrc/www/py-django14/Makefile
1.2modifypkgsrc/www/py-django14/PLIST
1.4modifypkgsrc/www/py-django14/distinfo