* [cyber] I: p9/branch packages: +1 (18263)
@ 2021-12-25 0:17 QA Team Robot
0 siblings, 0 replies; only message in thread
From: QA Team Robot @ 2021-12-25 0:17 UTC (permalink / raw)
To: sisyphus-cybertalk
1 UPDATED package
python3-module-django - A high-level Python 3 Web framework that encourages rapid development and clean, pragmatic design.
* Fri Dec 17 2021 Alexey Shabalin <shaba@altlinux> 2.2.25-alt1
- new version 2.2.25
- Fixes for the following security vulnerabilities:
+ CVE-2021-44420: Potential bypass of an upstream access control based on URL paths
* Tue Jul 13 2021 Alexey Shabalin <shaba@altlinux> 2.2.24-alt1
- new version 2.2.24
- Fixes for the following security vulnerabilities:
+ CVE-2021-28658 Potential directory-traversal via uploaded files
+ CVE-2021-31542 Potential directory-traversal via uploaded files
+ CVE-2021-32052 Header injection possibility since URLValidator accepted newlines in input on Python 3.9.5+
+ CVE-2021-33203 Potential directory traversal via admindocs
+ CVE-2021-33571 Possible indeterminate SSRF, RFI, and LFI attacks since validators accepted leading zeros in IPv4 addresses
* Wed Feb 24 2021 Alexey Shabalin <shaba@altlinux> 2.2.19-alt2
- Drop Provides: Django
* Wed Feb 24 2021 Alexey Shabalin <shaba@altlinux> 2.2.19-alt1
Total 18263 source packages.
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2021-12-25 0:17 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-12-25 0:17 [cyber] I: p9/branch packages: +1 (18263) QA Team Robot
ALT Linux Sisyphus cybertalk
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/sisyphus-cybertalk/0 sisyphus-cybertalk/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 sisyphus-cybertalk sisyphus-cybertalk/ http://lore.altlinux.org/sisyphus-cybertalk \
sisyphus-cybertalk@lists.altlinux.org sisyphus-cybertalk@lists.altlinux.ru sisyphus-cybertalk@lists.altlinux.com
public-inbox-index sisyphus-cybertalk
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-cybertalk
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git