Debian Package Tracker - python-django

general

source: python-django (source, python)
version: 1:1.11.5-1
maintainer: Debian Python Modules Team (archive) [DMD]
uploaders: Raphaël Hertzog [DMD] – Brian May [DMD] – Chris Lamb [DMD] – Luke Faraone [DMD]
arch: all
std-ver: 4.0.0
VCS: Git (Browse)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1.4.5-1+deb7u16
o-o-sec: 1.4.22-1+deb7u3
o-o-bpo: 1.7.1-1~bpo70+1
oldstable: 1.7.11-1+deb8u2
old-sec: 1.7.11-1+deb8u2
old-bpo: 1.8.18-1~bpo8+1
stable: 1:1.10.7-2
stable-bpo: 1:1.11.5-1~bpo9+1
testing: 1:1.11.5-1
unstable: 1:1.11.5-1

versioned links

1.4.5-1+deb7u16: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.4.22-1+deb7u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.7.1-1~bpo70+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.7.11-1+deb8u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.8.18-1~bpo8+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:1.10.7-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:1.11.5-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:1.11.5-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

python-django
python-django-common
python-django-doc
python3-django

action needed

A new upstream version is available: 2.0a1

high

A new upstream version 2.0a1 is available, you should consider packaging it.

Created: 2017-09-26 Last update: 2017-09-26 19:20

Multiarch hinter reports 1 issue(s)

normal

There are issues with the multiarch metadata for this package.

python-django-doc could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2017-09-26 19:31

Fails to build during reproducibility testing

normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2016-04-06 Last update: 2017-09-26 19:28

lintian reports 2 warnings

normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2017-09-25 Last update: 2017-09-25 07:13

1 ignored security issue in wheezy

low

There is 1 open security issue in wheezy.

1 issue skipped by the security teams:

CVE-2016-9013: Django 1.8.x before 1.8.16, 1.9.x before 1.9.11, and 1.10.x before 1.10.3 use a hardcoded password for a temporary database user created when running tests with an Oracle database, which makes it easier for remote attackers to obtain access to the database server by leveraging failure to manually specify a password in the database settings TEST dictionary.

Please fix it.

Created: 2016-11-01 Last update: 2017-09-16 07:26

1 ignored security issue in stretch

low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2017-12794: In Django 1.10.x before 1.10.8 and 1.11.x before 1.11.5, HTML autoescaping was disabled in a portion of the template for the technical 500 debug page. Given the right circumstances, this allowed a cross-site scripting attack. This vulnerability shouldn't affect most production sites since you shouldn't run with "DEBUG = True" (which makes this page accessible) in your production settings.

Please fix it.

Created: 2017-09-05 Last update: 2017-09-16 07:26

Standards version of the package is outdated.

wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.1.0 instead of 4.0.0).

Created: 2017-08-12 Last update: 2017-09-11 19:06

news

[rss feed]

[2017-09-26] Accepted python-django 1:2.0~alpha1-2 (source all) into experimental (Chris Lamb)
[2017-09-26] Accepted python-django 1:1.11.5-2 (source all) into unstable (Chris Lamb)
[2017-09-11] Accepted python-django 1:1.11.5-1~bpo9+1 (source all) into stretch-backports (Chris Lamb)
[2017-09-11] python-django 1:1.11.5-1 MIGRATED to testing (Debian testing watch)
[2017-09-05] Accepted python-django 1:1.11.5-1 (source all) into unstable (Chris Lamb)
[2017-08-10] Accepted python-django 1:1.11.4-1~bpo9+1 (source all) into stretch-backports, stretch-backports (Chris Lamb)
[2017-08-07] python-django 1:1.11.4-1 MIGRATED to testing (Debian testing watch)
[2017-08-01] Accepted python-django 1:1.11.4-1 (source all) into unstable (Chris Lamb)
[2017-07-08] python-django 1:1.11.3-1 MIGRATED to testing (Debian testing watch)
[2017-07-02] Accepted python-django 1:1.11.3-1 (source) into unstable (Chris Lamb)
[2017-06-19] Accepted python-django 1:1.11.2-2 (source) into unstable (Chris Lamb)
[2017-06-07] python-django 1:1.10.7-2 MIGRATED to testing (Debian testing watch)
[2017-06-05] Accepted python-django 1:1.10.7-2 (source all) into unstable (Raphaël Hertzog)
[2017-06-02] Accepted python-django 1:1.11.2-1 (source) into experimental (Chris Lamb)
[2017-05-26] Accepted python-django 1.8.18-1~bpo8+1 (source all) into jessie-backports->backports-policy, jessie-backports (Raphaël Hertzog)
[2017-05-06] Accepted python-django 1:1.11.1-3 (source) into experimental (Chris Lamb)
[2017-05-06] Accepted python-django 1:1.11.1-2 (source) into experimental (Chris Lamb)
[2017-05-06] Accepted python-django 1:1.11.1-1 (source) into experimental (Chris Lamb)
[2017-04-28] Accepted python-django 1.7.11-1+deb8u2 (source all) into proposed-updates->stable-new, proposed-updates (Luke W Faraone) (signed by: Luke Faraone)
[2017-04-07] python-django 1:1.10.7-1 MIGRATED to testing (Debian testing watch)
[2017-04-05] Accepted python-django 1.4.22-1+deb7u3 (source all) into oldstable (Chris Lamb)
[2017-04-05] Accepted python-django 1:1.11-1 (source) into experimental (Chris Lamb)
[2017-04-04] Accepted python-django 1:1.10.7-1 (source) into unstable (Chris Lamb)
[2017-03-22] Accepted python-django 1:1.11~rc1-1 (source) into experimental (Chris Lamb)
[2017-03-07] python-django 1:1.10.6-1 MIGRATED to testing (Debian testing watch)
[2017-03-01] Accepted python-django 1:1.10.6-1 (source) into unstable (Chris Lamb)
[2017-02-22] Accepted python-django 1:1.11~beta1-1 (source) into experimental (Chris Lamb)
[2017-01-27] Accepted python-django 1:1.11~alpha1-1 (source) into experimental (Chris Lamb)
[2017-01-16] python-django 1:1.10.5-1 MIGRATED to testing (Debian testing watch)
[2017-01-05] Accepted python-django 1:1.10.5-1 (source) into unstable (Chris Lamb)

bugs [bug history graph]

all: 1
RC: 0
I&N: 0
M&W: 1
F&P: 0

links

homepage
lintian (0, 2)
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:1.11.4-1ubuntu1
6 bugs (2 patches)
patches for 1:1.11.4-1ubuntu1