Bug#969367: marked as done (python-django: CVE-2020-24583 CVE-2020-24584)

Debian Bug Tracking System Tue, 01 Sep 2020 08:04:07 -0700

Your message dated Tue, 01 Sep 2020 14:58:23 +0000
with message-id <e1kd7jr-0000my...@fasolo.debian.org>
and subject line Bug#969367: fixed in python-django 2:3.1.1-1
has caused the Debian Bug report #969367,
regarding python-django: CVE-2020-24583 CVE-2020-24584
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
969367: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=969367
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: python-django
Version: 1:1.10.7-2+deb9u9
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security

Hi,

The following vulnerabilities were published for python-django.

CVE-2020-24583
CVE-2020-24584

If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2020-24583
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24583
[1] https://security-tracker.debian.org/tracker/CVE-2020-24584
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24584
[2] https://www.djangoproject.com/weblog/2020/sep/01/security-releases/

Regards,

-- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      la...@debian.org / chris-lamb.co.uk
       `-

--- End Message ---

--- Begin Message ---

Source: python-django
Source-Version: 2:3.1.1-1
Done: Chris Lamb <la...@debian.org>

We believe that the bug you reported is fixed in the latest version of
python-django, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 969...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Chris Lamb <la...@debian.org> (supplier of updated python-django package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 01 Sep 2020 12:32:23 +0100
Source: python-django
Built-For-Profiles: nocheck
Architecture: source
Version: 2:3.1.1-1
Distribution: experimental
Urgency: medium
Maintainer: Debian Python Modules Team 
<python-modules-t...@lists.alioth.debian.org>
Changed-By: Chris Lamb <la...@debian.org>
Closes: 969367
Changes:
 python-django (2:3.1.1-1) experimental; urgency=medium
 .
   * New upstream security release to address CVE-2020-24583, CVE-2020-24584.
     (Closes: #969367)
     <https://www.djangoproject.com/weblog/2020/sep/01/security-releases/>
Checksums-Sha1:
 99ed953314e9851ae4aa50ff134ccfe7246694ff 2798 python-django_3.1.1-1.dsc
 85b27794ddeea5b127563ba6cae0f35b59d78289 9250616 
python-django_3.1.1.orig.tar.gz
 db9518b45038070bb1ff74d8d1196ec14c7f3702 26128 
python-django_3.1.1-1.debian.tar.xz
 5383a86cf9f867b62fbbf90d4f8118c4b54f189c 7204 
python-django_3.1.1-1_amd64.buildinfo
Checksums-Sha256:
 354278fc690b70fc898a80144e951bce0ea3eda56c300bf53e211ea4761a8c63 2798 
python-django_3.1.1-1.dsc
 59c8125ca873ed3bdae9c12b146fbbd6ed8d0f743e4cf5f5817af50c51f1fc2f 9250616 
python-django_3.1.1.orig.tar.gz
 f935b9af5649edde7c801a64a9d8a66a8ff1eaaca873c858948846649ce4f764 26128 
python-django_3.1.1-1.debian.tar.xz
 b8a1a6ac14078821ae4f4daf17bfb9872c09f278f89cc15126dd637c9f85cb78 7204 
python-django_3.1.1-1_amd64.buildinfo
Files:
 f5c722c5c84276dbbcd97b38749190c1 2798 python optional python-django_3.1.1-1.dsc
 d5e894fb3c46064e84e9dc68a08a46d0 9250616 python optional 
python-django_3.1.1.orig.tar.gz
 730b5244bc333cad7687b3f68f326c4b 26128 python optional 
python-django_3.1.1-1.debian.tar.xz
 941e99aad510f269a00287bdb5547f09 7204 python optional 
python-django_3.1.1-1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAl9OUegACgkQHpU+J9Qx
Hlgocw//Qd6sK0sgHQg1k5cRGy080KoCju9oHCsvBjYcHv22es82E9DGoeHXfW7J
Cqw5lNhGdCqIeLtlvRtQTiY9v0iKaMUjp6UdQggDYnN5MUFJspeRf4HFhST1YL4L
m9KyjcHhrYujg6LtmB9bI0082E2dPqAdynj57Hnal8L5mFt6lBTSF9DVfuQC/y1V
hvBW4JUQfHs/f2bT9AjZMF30Rq4vevrEVsr688kPVCJlqFk2Vu0O0SdQf77tGUB3
egK4YlE54b1HGTIa1s3hBrMJAAqjULHT5Atcr9SNuM46lUO4tB1SdhciFYTV3s/w
wo3VdWI/sTDH3z2SfkEzIsGtF7AFkexq+gHBPzTuHj/uEdJ+1dgsl8J1730jEMhk
7Rb4H4zIdX7JSh2gX83Glv+VzPAstquau1A+DsWjzo2T6zh4q82PtxeZqg/z54wc
TxdUJGrj+6woX6YxrngQA1sROtM6KUqaMdM+YzM5zr+SfWHGJEX5Th+A/TbDsLWz
kIlFR1wpKYFN6twR77KqavP3iiETlBvwSyiFrYKvkBomJ/pBAlpWNBpunCYGrub6
NzkncuaqFrQ5l975bxLRjTbHhbpOZLRLQZXgQ/q8Iz09MQpBgNX1SWtzMBQIQAZP
SK/L8lF1u9LKgvw/8pSF3f6KV+BH2uHSYXJNqaVwmgi2co1L4us=
=Pj8T
-----END PGP SIGNATURE-----

--- End Message ---

Bug#969367: marked as done (python-django: CVE-2020-24583 CVE-2020-24584)

Reply via email to