Your message dated Mon, 19 May 2008 20:47:27 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#481164: fixed in python-django 0.96.2-1
has caused the Debian Bug report #481164,
regarding python-django: CVE-2008-2302 cross-site scripting vulnerability
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)
--
481164: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=481164
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message ---
Package: python-django
Version: 0.97~svn7189-1
Severity: grave
Tags: security
Justification: user security hole
http://www.djangoproject.com/weblog/2008/may/14/security/
Updates need to be prepared for etch, sid/lenny, and experimental.
Brett, can you take care of all this? (Also handling the few open bugs for
the sid/experimental upload would be nice)
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1,
'experimental')
Architecture: i386 (i686)
Kernel: Linux 2.6.24-1-686 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages python-django depends on:
ii python 2.5.2-1 An interactive high-level object-o
ii python-support 0.8.1 automated rebuilding support for P
Versions of packages python-django recommends:
ii python-pysqlite2 2.4.1-1 Python interface to SQLite 3
-- no debconf information
--- End Message ---
--- Begin Message ---
Source: python-django
Source-Version: 0.96.2-1
We believe that the bug you reported is fixed in the latest version of
python-django, which is due to be installed in the Debian FTP archive:
python-django_0.96.2-1.diff.gz
to pool/main/p/python-django/python-django_0.96.2-1.diff.gz
python-django_0.96.2-1.dsc
to pool/main/p/python-django/python-django_0.96.2-1.dsc
python-django_0.96.2-1_all.deb
to pool/main/p/python-django/python-django_0.96.2-1_all.deb
python-django_0.96.2.orig.tar.gz
to pool/main/p/python-django/python-django_0.96.2.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Raphael Hertzog <[EMAIL PROTECTED]> (supplier of updated python-django package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 15 May 2008 21:40:59 +0200
Source: python-django
Binary: python-django
Architecture: source all
Version: 0.96.2-1
Distribution: unstable
Urgency: low
Maintainer: Brett Parker <[EMAIL PROTECTED]>
Changed-By: Raphael Hertzog <[EMAIL PROTECTED]>
Description:
python-django - A high-level Python Web framework
Closes: 481164
Changes:
python-django (0.96.2-1) unstable; urgency=low
.
* New upstream security release. Closes: #481164
Checksums-Sha1:
e6b5d71b08f50bec1f67dce3a6f8dac4cf7e7c21 1457 python-django_0.96.2-1.dsc
2ea0cba80cb79a9d86b0829f9665f011de17c2b9 1756803
python-django_0.96.2.orig.tar.gz
23073a2b95fe780f7dca9d5076cf6956ca9f3097 7273 python-django_0.96.2-1.diff.gz
2dcabb7dce7a82d5649a32f9f5de384ae5bd423a 1701752 python-django_0.96.2-1_all.deb
Checksums-Sha256:
a36a91534ef6b5585035c9fc75c67e7adf7dfe75164521b907bccc78bdef375d 1457
python-django_0.96.2-1.dsc
2493010302520fce87a4239170efa9eac8a639ab13a4e8f6d7802f0435c13e9b 1756803
python-django_0.96.2.orig.tar.gz
a7af3edb35b3fa154bdf5b4ac2d0d58023f2042147cf18cc35a25d58a794ae76 7273
python-django_0.96.2-1.diff.gz
b0880b4cd265e530ccd6f50dc1f9370b1d4d1280c9d83044947557381cecefae 1701752
python-django_0.96.2-1_all.deb
Files:
097099f9c8260e30e00ba78ed4b7c864 1457 python optional
python-django_0.96.2-1.dsc
857e1f2a13e675f4fff43dd77403dfc0 1756803 python optional
python-django_0.96.2.orig.tar.gz
7f47538f6ebf5600718f69170716410e 7273 python optional
python-django_0.96.2-1.diff.gz
6aad76947dafcca70a4ad2688fce9c73 1701752 python optional
python-django_0.96.2-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Signed by Raphael Hertzog
iD8DBQFIMeS5vPbGD26BadIRAt9GAJwNXUl8yo61giCWDxTCRS8YTpa3TwCeJ4p4
QFyjy+auF6fMYnL8zj7zz5E=
=QPsf
-----END PGP SIGNATURE-----
--- End Message ---