Package "python-django"

Name: python-django


This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • High-level Python web development framework (documentation)
  • High-level Python web development framework

Latest version: 2:2.2.12-1ubuntu0.6
Release: focal (20.04)
Level: security
Repository: main


Other versions of "python-django" in Focal

Repository Area Version
base main 2:2.2.12-1
updates main 2:2.2.12-1ubuntu0.6

Packages in group

Deleted packages are displayed in grey.


Version: 2:2.2.12-1ubuntu0.1 2020-06-03 12:07:16 UTC

  python-django (2:2.2.12-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Potential data leakage via malformed memcached keys
    - debian/patches/CVE-2020-13254.patch: enforced cache key validation in
      memcached backends in django/core/cache/__init__.py,
      django/core/cache/backends/memcached.py, tests/cache/tests.py.
    - CVE-2020-13254
  * SECURITY UPDATE: Possible XSS via admin ForeignKeyRawIdWidget
    - debian/patches/CVE-2020-13596.patch: fixed potential XSS in admin
      ForeignKeyRawIdWidget in django/contrib/admin/widgets.py,
      tests/admin_widgets/models.py, tests/admin_widgets/tests.py.
    - CVE-2020-13596

 -- Marc Deslauriers <email address hidden> Thu, 28 May 2020 10:10:05 -0400

CVE-2020-13254 RESERVED
CVE-2020-13596 RESERVED

About   -   Send Feedback to @ubuntu_updates