Debian Package Tracker

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>
To: <debian-devel-changes@lists.debian.org> , <debian-experimental-changes@lists.debian.org>
Subject: Accepted python-django 2:3.2~alpha1-2 (source) into experimental
Date: Fri, 19 Feb 2021 10:03:34 +0000
Signed by: Chris Lamb <lamby@debian.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 19 Feb 2021 09:28:42 +0000
Source: python-django
Built-For-Profiles: nocheck
Architecture: source
Version: 2:3.2~alpha1-2
Distribution: experimental
Urgency: medium
Maintainer: Debian Python Team <team+python@tracker.debian.org>
Changed-By: Chris Lamb <lamby@debian.org>
Closes: 983090
Changes:
 python-django (2:3.2~alpha1-2) experimental; urgency=medium
 .
   * Apply security fix from upstream:
 .
     - CVE-2021-23336: Prevent a web cache poisoning attack via "parameter
       cloaking". Django contains a copy of urllib.parse.parse_qsl() which was
       added to backport some security fixes. A further security fix has been
       issued recently such that parse_qsl() no longer allows using ";" as a
       query parameter separator by default. (Closes: #983090)
 .
     <https://www.djangoproject.com/weblog/2021/feb/19/security-releases/>
Checksums-Sha1:
 e807b721ebc192de3c9c7ae4d5289533092862fe 2814 python-django_3.2~alpha1-2.dsc
 51b92238279b46b5948556f4280ba10a77f54b5b 28360 python-django_3.2~alpha1-2.debian.tar.xz
 2f029f6f8244faabb48d1b1b03b69f49d9f9e38b 7611 python-django_3.2~alpha1-2_amd64.buildinfo
Checksums-Sha256:
 c32f5b7a3d861aca6e935ecc02a2db0497e8fd0fa9b12c1c8d43e853edb80aec 2814 python-django_3.2~alpha1-2.dsc
 7158eefe5367bf170904493f91acdd37866dbd3745e12486c49241d0ece45899 28360 python-django_3.2~alpha1-2.debian.tar.xz
 cf8d300bc0eab25980df8fd99ec03ffaab24dc9faf68d4823a281febedc06d2e 7611 python-django_3.2~alpha1-2_amd64.buildinfo
Files:
 2b2b65ad997b72f571725b7211e14064 2814 python optional python-django_3.2~alpha1-2.dsc
 5ca2bea87748e0cb88ba791cceff7153 28360 python optional python-django_3.2~alpha1-2.debian.tar.xz
 8228ddf87d0fa659fba78634782e6292 7611 python optional python-django_3.2~alpha1-2_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----
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=Nqm4
-----END PGP SIGNATURE-----

News for package python-django