[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted python-django 2:2.2.9-2~bpo10+1 (source all) into buster-backports, buster-backports



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 31 Jan 2020 18:32:25 +0100
Source: python-django
Binary: python-django-doc python3-django
Architecture: source all
Version: 2:2.2.9-2~bpo10+1
Distribution: buster-backports
Urgency: medium
Maintainer: Debian Python Modules Team <python-modules-team@lists.alioth.debian.org>
Changed-By: Mattia Rizzolo <mattia@debian.org>
Description:
 python-django-doc - High-level Python web development framework (documentation)
 python3-django - High-level Python web development framework
Closes: 901526 905216 910016 910240 915626 918230 924784 931316 931592 931652 934026 946937 947549
Changes:
 python-django (2:2.2.9-2~bpo10+1) buster-backports; urgency=medium
 .
   * Rebuild for buster-backports.
 .
 python-django (2:2.2.9-2) unstable; urgency=medium
 .
   * Add python3-selenium to test-dependencies and to a runtime "Suggests".
     (Closes: #947549)
 .
 python-django (2:2.2.9-1) unstable; urgency=medium
 .
   * New upstream security release. (Closes: #946937)
     <https://www.djangoproject.com/weblog/2019/dec/18/security-releases/>
 .
 python-django (2:2.2.8-1) unstable; urgency=medium
 .
   * New upstream security release.
     <https://www.djangoproject.com/weblog/2019/dec/02/security-releases/>
 .
 python-django (2:2.2.7-1) unstable; urgency=medium
 .
   [ Chris Lamb ]
   * New upstream bugfix release.
     <https://docs.djangoproject.com/en/2.2/releases/2.2.7/>
 .
   [ Ondřej Nový ]
   * Bump Standards-Version to 4.4.1.
 .
 python-django (2:2.2.6-1) unstable; urgency=medium
 .
   * New upstream bugfix release.
     <https://docs.djangoproject.com/en/2.2/releases/2.2.6/>
 .
 python-django (2:2.2.5-1) unstable; urgency=medium
 .
   * New upstream bugfix release.
     <https://docs.djangoproject.com/en/2.2/releases/2.2.5/>
 .
 python-django (2:2.2.4-1) unstable; urgency=medium
 .
   * New upstream security release. (Closes: #934026)
     <https://www.djangoproject.com/weblog/2019/aug/01/security-releases/>
 .
 python-django (2:2.2.3-5) unstable; urgency=medium
 .
   [ Chris Lamb ]
   * Drop Pre-Depends on version of dpkg that is now satisfied in oldoldstable.
 .
   [ Ondřej Nový ]
   * Bump Standards-Version to 4.4.0
 .
 python-django (2:2.2.3-4) unstable; urgency=medium
 .
   * Fixup debian/python-django-doc.doc-base to refer to the new location(s) of
     the documentation. (Closes: #931652)
 .
 python-django (2:2.2.3-3) unstable; urgency=medium
 .
   * python3-mysqlclient 1.3.13 or newer is now required so add a "Breaks" on
     versions older than this. Thanks to Zhang Jingqiang for the report.
     (Closes: #931592)
   * Drop "Python 3 version" from package description; we only have this
     version now.
   * Run `wrap-and-sort -sa`.
 .
 python-django (2:2.2.3-2) unstable; urgency=medium
 .
   * Upload (Python 3.x-only) branch to unstable after the release of
     Debian "buster".
   * Update debian/gbp.conf to refer to debian/sid after merge.
 .
 python-django (2:2.2.3-1) experimental; urgency=medium
 .
   * New upstream security release.
     <https://www.djangoproject.com/weblog/2019/jul/01/security-releases/>
     (Closes: #931316)
 .
 python-django (2:2.2.1-1) experimental; urgency=medium
 .
   * New upstream bugfix release.
     <https://docs.djangoproject.com/en/2.2/releases/2.2.1/>
 .
 python-django (2:2.2-1) experimental; urgency=medium
 .
   * New upstream realease.
     <https://docs.djangoproject.com/en/2.2/releases/2.2/>
 .
 python-django (2:2.2~rc1-1) experimental; urgency=medium
 .
   * New upstream release candidate release.
     <https://www.djangoproject.com/weblog/2019/mar/18/django-22-rc1/>
   * Drop a test that fails with "OverflowError: timestamp out of range for
     platform time_t" on 32-bit platforms. (Closes: #924784)
 .
 python-django (2:2.2~beta1-1) experimental; urgency=medium
 .
   * New upstream beta release.
     <https://www.djangoproject.com/weblog/2019/feb/11/django-22-beta-1-released/>
 .
 python-django (2:2.2~alpha1-1) experimental; urgency=medium
 .
   * New upstream alpha release.
     <https://www.djangoproject.com/weblog/2019/jan/17/django-22-alpha-1/>
 .
 python-django (2:2.1.5-1) experimental; urgency=medium
 .
   * New upstream security release:
     - CVE-2019-3498: Content spoofing possibility in the default 404 page.
       (Closes: #918230)
     <https://www.djangoproject.com/weblog/2019/jan/04/security-releases/>
   * Drop 0007-Fixed-29182-Adjusted-SQLite-schema-table-alteration-.patch;
     applied upstream. (re. #915626)
   * Move to debhelper-compat virtual package.
   * debian/control:
     - Bump debhelper compatibility level to 12.
     - Bump Standards-Version to 4.3.0.
 .
 python-django (2:2.1.4-2) experimental; urgency=medium
 .
   * Apply patch from upstream to fix compatibility with SQLite 3.26.
     (Closes: #915626)
 .
 python-django (2:2.1.4-1) experimental; urgency=medium
 .
   * New upstream bugfix release:
     <https://docs.djangoproject.com/en/stable/releases/2.1.4/>
   * Refresh patches.
 .
 python-django (2:2.1.3-1) experimental; urgency=medium
 .
   * New upstream bugfix release.
     <https://docs.djangoproject.com/en/2.1/releases/2.1.3/>
 .
 python-django (2:2.1.2-2) experimental; urgency=medium
 .
   * Default to supporting Spatialite >= 4.2. (Closes: #910240)
   * debian/control: Update libgdal's SONAME in Suggests.
   * Add libsqlite3-mod-spatialite to Suggests.
 .
 python-django (2:2.1.2-1) experimental; urgency=medium
 .
   * New upstream security release.
 .
     CVE-2018-16984: Password hash disclosure to "view only" admin users. If an
     admin user has the change permission to the user model, only part of the
     password hash is displayed in the change form. Admin users with the view
     (but not change) permission to the user model were displayed the entire
     hash.  While it's typically infeasible to reverse a strong password hash,
     if a site uses weaker password hashing algorithms such as MD5 or SHA1,
     it could be a problem. (Closes: #910016)
 .
   * Move all documentation to /usr/share/doc.
   * Really remove all license files (eg. LICENSE-SELECT2.md).
   * debian/tests/control: Drop deprecated needs-recommends test restriction.
 .
 python-django (2:2.1.1-1) experimental; urgency=medium
 .
   * New upstream bugfix release.
     <https://docs.djangoproject.com/en/2.1/releases/2.1.1/>
   * Bump Standards-Version to 4.2.1.
 .
 python-django (2:2.1-1) experimental; urgency=medium
 .
   * New upstream release.
     - CVE-2018-14574: Open redirect possibility in CommonMiddleware.
       (Closes: #905216)
 .
 python-django (2:2.1~rc1-1) experimental; urgency=medium
 .
   * New upstream RC release.
     <https://www.djangoproject.com/weblog/2018/jul/18/django-21-rc1/>
   * Bump Standards-Version to 4.1.5.
 .
 python-django (2:2.1~beta1-1) experimental; urgency=medium
 .
   * New upstream beta release. (Closes: #901526)
     <https://www.djangoproject.com/weblog/2018/jun/18/django-21-beta-1-released/>.
   * Patches:
     - Drop 0006-Fixed-a-missing-pyc-test-file-in-source-distribution.patch;
       applied upstream.
     - Refresh all patches.
     - Set gbp-pq's --abbrev's default to 12 in gbp.conf.
   * Drop "old" X-Python-Version header in debian/control.
   * debian/rules:
     - Also remove LICENSE.md files.
     - Delete all extra license files, not just the ones in the main package.
     - Move dropping of extra license files to dh_installdocs.
 .
 python-django (2:2.1~alpha1-1) experimental; urgency=medium
 .
   * New upstream alpha release.
     <https://docs.djangoproject.com/en/dev/releases/2.1/>.
     - Refresh 0002-use_debian_geoip_database_as_default.diff.
 .
 python-django (2:2.0.5-1) experimental; urgency=medium
 .
   * New upstream bugfix release
     <https://docs.djangoproject.com/en/2.0/releases/2.0.5/>.
     - Rebase and refresh patches.
   * Bump Standards-Version to 4.1.4.
 .
 python-django (2:2.0.4-1) experimental; urgency=medium
 .
   * New upstream bugfix release
     <https://docs.djangoproject.com/en/2.0/releases/2.0.4/>.
   * Update Vcs-Git and Vcs-Browser to salsa.
   * Bump debhelper compatibility level to 11.
   * Drop debian/python-django-doc.examples.
 .
 python-django (2:2.0.3-1) experimental; urgency=medium
 .
   * New upstream security release:
     - CVE-2018-7536: Denial-of-service possibility in urlize and urlizetrunc
       template filters.
     - CVE-2018-7537: Denial-of-service possibility in truncatechars_html and
       truncatewords_html template filters
 .
 python-django (2:2.0.2-1) experimental; urgency=medium
 .
   * New upstream security release:
     - CVE-2018-6188: A regression in Django 1.11.8 made
       django.contrib.auth.forms.AuthenticationForm run its
       confirm_login_allowed() method even if an incorrect password is entered.
       This can leak information about a user, depending on what messages
       confirm_login_allowed() raises. If confirm_login_allowed() isn't
       overridden, an attacker enter an arbitrary username and see if that user
       has been set to is_active=False. If confirm_login_allowed() is
       overridden, more sensitive details could be leaked.
   * Use HTTPS Format: URI in debian/copyright.
 .
 python-django (2:2.0.1-1) experimental; urgency=medium
 .
   * New upstream bugfix release.
     <https://docs.djangoproject.com/en/2.0/releases/2.0.1/>
   * Bump Standards-Version to 4.1.3.
 .
 python-django (2:2.0-1) experimental; urgency=medium
 .
   * New upstream stable release.
     https://docs.djangoproject.com/en/2.0/releases/2.0/
 .
 python-django (1:2.0~rc1-1) experimental; urgency=medium
 .
   * New upstream release candidate.
     <https://www.djangoproject.com/weblog/2017/nov/15/django-20-release-candidate-1-released/>
   * Drop trailing whitespace in debian/changelog.
 .
 python-django (1:2.0~beta1-1) experimental; urgency=medium
 .
   * New upstream beta release of Django 2.0.
     <https://www.djangoproject.com/weblog/2017/oct/16/django-20-beta-1-released/>
   * debian/watch:
     - Use HTTPS URI to avoid debian-watch-uses-insecure-uri warning.
     - uversionmangle alpha releases prefixed with "a" (eg. 2.0a1 → 2.0~alpha1)
   * Bump Standards-Version to 4.1.1.
 .
 python-django (1:2.0~alpha1-2) experimental; urgency=medium
 .
   New upstream alpha release of Django 2.0.
   <https://docs.djangoproject.com/en/dev/releases/2.0/>
 .
   * Drop Python 2.x support:
     - Remove python-django and python-django-common binary packages and
       splitting logic.
     - Drop our local debian/django-admin wrapper, making /usr/bin/django-admin
       a symlink to the version under dist-packages.
     - Consolidate a number of files under debian/.
     - Simplify autopkgtests to reflect lack of Python 2.x support.
 .
   * deban/control:
     - Add Replaces/Breaks on python-django and python-django-common.
     - Add Replaces/Breaks/Provodes on python-django-common.
     - Bump X-Python-Version to 3.5.
     - Bump Standards-Version to 4.1.0.
     - Move python-doc Depends to python3-doc.
     - Drop extra whitespaces.
     - Move sphinx-doc Build-Dependency to python3-sphinx.
 .
   * debian/rules:
     - Correct find(1) call to delete all license files.
     - Drop explicitly excluding .js and objects.inv files; this is done by
       dh_compress now.
     - Be explicit when removing embedded Javascript libraries.
 .
   * debian/patches/*:
     - Update 0002-use_debian_geoip_database_as_default.diff to reflect new
       location of base.py.
     - Drop 0003-Fixed-test_middleware_classes_headers-if-Django-sour.patch;
       merged upstream.
     - Refresh 0004-Use-locally-installed-documentation-sources.patch.
     - Ensure the default shebang for new projects uses Python 3.x.
     - Make patches "pq import -> pq export clean".
 .
   * Lintian:
     - Add "python-script-but-no-python-dep" override for "manage.py-tpl". This
       is not a true Python script, it's a template only.
     - Add source overrides for "source-contains-prebuilt-javascript-object"
       files under django/contrib/admin/static/admin/js. These are not bugs
       and/or upstream will not remove them from the orig tarball anyway.
     - Add overrides for "no-upstream-changelog"; we ship upstream's excellent
       release notes in the python-django-doc package.
     - Drop unnecessary overrides.
Checksums-Sha1:
 ef966e855cd246696c49ab5b2feda164903012da 2838 python-django_2.2.9-2~bpo10+1.dsc
 c77e93a0da4cf328871e0cf4e94b2eb4bc8be4ef 25928 python-django_2.2.9-2~bpo10+1.debian.tar.xz
 05122145441156815a81d3f7e5050b7e769070dc 3162904 python-django-doc_2.2.9-2~bpo10+1_all.deb
 bdd7b8ac8bc86cd6bcba455eb2caf97b7b057b6e 12726 python-django_2.2.9-2~bpo10+1_amd64.buildinfo
 3b4f6d52c490b437f368d3f38d456b616f8b609c 2680452 python3-django_2.2.9-2~bpo10+1_all.deb
Checksums-Sha256:
 ec09b23c5e79e27625215c05bd6084034d44abd6cb3e96c5f8382abf3a822dbd 2838 python-django_2.2.9-2~bpo10+1.dsc
 16cfb4b4acfd92fa9f78a19d8581f5da180f50047de7030d3405e8579c76b75e 25928 python-django_2.2.9-2~bpo10+1.debian.tar.xz
 5e4f0893326bf56d746b7899f2dd37366b540273c94604806ce24f4de335e19a 3162904 python-django-doc_2.2.9-2~bpo10+1_all.deb
 1f5a88eeafd2182565ffcbc7b88bd85bfa97bed05cbcd0f26e2a70d34a8466d4 12726 python-django_2.2.9-2~bpo10+1_amd64.buildinfo
 17340af7bbb261503806ba501d1ec2096ce8369b7d36f442b34117f2bc5fbc79 2680452 python3-django_2.2.9-2~bpo10+1_all.deb
Files:
 21bf182a66eb20aeaf44e2aab5755b20 2838 python optional python-django_2.2.9-2~bpo10+1.dsc
 5c753176527455a2938366fe0cdc96fa 25928 python optional python-django_2.2.9-2~bpo10+1.debian.tar.xz
 5e1e82cd7dc20d7b0dc25b70226b5eaa 3162904 doc optional python-django-doc_2.2.9-2~bpo10+1_all.deb
 d5f12bc6bdd8c37cce8942466c3719c0 12726 python optional python-django_2.2.9-2~bpo10+1_amd64.buildinfo
 3a88bef29e00cc99813f373af7f07568 2680452 python optional python3-django_2.2.9-2~bpo10+1_all.deb

-----BEGIN PGP SIGNATURE-----
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=Moz+
-----END PGP SIGNATURE-----


Reply to: