Subject: CVS commit: pkgsrc/www/py-django
From: Adam Ciarcinski
Date: 2014-08-23 13:13:01
Message id: 20140823111301.477F796@cvs.netbsd.org
Log Message:
Changes 1.6.6:
Security fixes:
* Issue: reverse() can generate URLs pointing to other hosts (CVE-2014-0480)
* Issue: file upload denial of service (CVE-2014-0481)
* Issue: RemoteUserMiddleware session hijacking (CVE-2014-0482)
* Issue: data leakage via querystring manipulation in admin (CVE-2014-0483)
Files:
RevisionActionfile
1.53modifypkgsrc/www/py-django/Makefile
1.37modifypkgsrc/www/py-django/distinfo