About the security issues affecting python-django in Wheezy
The Debian LTS team recently reviewed the security issue(s) affecting your
package in Wheezy:
We decided that we would not prepare a wheezy security update (usually
because the security impact is low and that we concentrate our limited
resources on higher severity issues and on the most widely used packages).
That said the wheezy users would most certainly benefit from a fixed
On oldstable and stable it was postponed. For wheezy I decided that it is not
worth the effort in fixing because it was "just" a XSS vulnerability and
also that it only affects a debug mode page. Please let me know if you
If you want to work on such an update, you're welcome to do so. Please
try to follow the workflow we have defined here:
If that workflow is a burden to you, feel free to just prepare an
updated source package and send it to firstname.lastname@example.org (via a
debdiff, or with an URL pointing to the source package, or even with a
pointer to your packaging repository), and the members of the LTS team
will take care of the rest. However please make sure to submit a tested
Thank you very much.
on behalf of the Debian LTS team.