-
Mon Jan 07 2019 Matthias Runge <mrunge@redhat.com> - 1.11.18-1
- update to 1.11.18, fix for CVE-2019-3498 (rhbz#1663724)
-
Mon Nov 19 2018 Stephen Gallagher <sgallagh@redhat.com> - 1.11.13-4
- Drop %{python_provide} macros introducing automatic Obsoletes
-
Mon Nov 19 2018 Matthias Runge <mrunge@redhat.com> - 1.11.13-3
- drop all obsoletes
-
Thu Nov 15 2018 Matthias Runge <mrunge@redhat.com> - 1.11.13-2
- rebase EPEL7 package to Django-1.11.x
-
Mon May 21 2018 Miro HronĨok <mhroncok@redhat.com> - 1.11.13-2
- Make python2-django require python-django-bash-completion (as intended)
-
Wed Apr 05 2017 Stephen Gallagher <sgallagh@redhat.com> - 1.6.11.6-1
- Update to the latest upstream security release 1.6.11.6
- https://www.reviewboard.org/news/2017/04/04/new-django-1-6-11-6-security-releases/
-
Fri Mar 04 2016 Matthias Runge <mrunge@redhat.com> - 1.6.11-5
- fix CVE-2016-2512 (rhbz#1314345)
- fix CVE-2016-2513
-
Mon Nov 30 2015 Matthias Runge <mrunge@redhat.com> - 1.6.11-4
- fix for CVE-2015-8213 (rhbz#1285279)
backport thanks to https://github.com/beanbaginc/django/
- changed patches to use rdopkg for managing patches
-
Wed Aug 26 2015 Matthias Runge <mrunge@redhat.com> - 1.6.11-3
- cherry-pick fix for Denial-of-service possibility in logout()
view by filling session store CVE-2015-5963, CVE-2015-5964
- Prevented newlines from being accepted in some validators.
-
Thu Jul 16 2015 Matthias Runge <mrunge@redhat.com> - 1.6.11-2
- cherry pick fix for CVE-2015-5143 (DoS by filling session store)
rhbz#1239010