[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [SECURITY] [DLA 590-1] python-django security update

Holger Levsen <holger@layer-acht.org> writes:

> https://www.debian.org/security/2016/dsa-3622 says django-python 1.7 is
> prone to a cross-site scripting vulnerability in the admin's add/change
> related popup - is this the issue this DLA is addressing?

No, the upload did not include any new vulnerabilites that I know
of. Otherwise I would have listed them.

See https://lists.debian.org/debian-lts/2016/07/msg00069.html for the
reason why I uploaded.

Also see https://lists.debian.org/debian-lts/2016/08/msg00088.html.
Brian May <bam@debian.org>

Reply to: