2a04e24d2d
[3.0.x] Added CVE-2021-28658 to security archive.
...
Backport of 1eac8468cb
2021-04-06 09:47:14 +02:00
0d71c48106
[3.0.x] Post-release version bump.
2021-04-06 08:37:12 +02:00
f528002435
[3.0.x] Bumped version for 3.0.14 release.
2021-04-06 08:34:45 +02:00
e7fba62248
[3.0.x] Fixed CVE-2021-28658 -- Fixed potential directory-traversal via uploaded files.
...
Thanks Claude Paroz for the initial patch.
Thanks Dennis Brinkrolf for the report.
Backport of d4d800ca1a
2021-04-06 08:33:16 +02:00
232d5f61e6
[3.0.x] Added CVE-2021-23336 to security archive.
...
Backport of ab58f07250
2021-02-19 11:06:46 +01:00
cb7e3ff4a1
[3.0.x] Post-release version bump.
2021-02-19 09:43:26 +01:00
04a9b7df3f
[3.0.x] Bumped version for 3.0.13 release.
2021-02-19 09:42:24 +01:00
326a926bee
[3.0.x] Fixed CVE-2021-23336 -- Fixed web cache poisoning via django.utils.http.limited_parse_qsl().
2021-02-18 10:21:04 +01:00
ad36388406
[3.0.x] Added documentation extlink for bugs.python.org.
...
Backport of d02d60eb0f
2021-02-17 14:27:36 +01:00
0194f0be31
[3.0.x] Added CVE-2021-3281 to security archive.
...
Backport of f749148d62
2021-02-01 10:46:46 +01:00
bfe24c3803
[3.0.x] Post-release version bump.
2021-02-01 09:48:38 +01:00
81c99e4eb0
[3.0.x] Bumped version for 3.0.12 release.
2021-02-01 09:40:04 +01:00
52e409ed17
[3.0.x] Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archive.extract().
...
Thanks Florian Apolloner, Shai Berger, and Simon Charette for reviews.
Thanks Wang Baohua for the report.
Backport of 05413afa8c
2021-02-01 09:14:22 +01:00
74ca3cac32
[3.0.x] Fixed GeoIPTest.test04_city() failure with the latest GeoIP2 database.
...
Backport of 135c800fe6
2021-01-29 11:03:35 +01:00
f13bedf102
[3.0.x] Updated CVE URL.
...
Backport of 656b331b13
2021-01-02 12:50:30 +01:00
c506639b42
[3.0.x] Fixed #31850 -- Fixed BasicExtractorTests.test_extraction_warning with xgettext 0.21+.
...
"format string with unnamed arguments cannot be properly localized"
warning is not raised in xgettext 0.21+.
This patch uses a message that causes an xgettext warning regardless of
the version.
Backport of 07a30f5616
2020-11-02 10:29:51 +01:00
008d49caa2
[3.0.x] Post-release version bump.
2020-11-02 09:02:53 +01:00
f6778c256f
[3.0.x] Bumped version for 3.0.11 release.
2020-11-02 08:59:21 +01:00
c3b8a62f63
[3.0.x] Set release date for 3.0.11 and 2.2.17.
...
Backport of 7fc07b9b2b
2020-11-02 08:37:54 +01:00
b0a6798de5
[3.0.x] Fixed #32152 -- Fixed grouping by subquery aliases.
...
Regression in 42c08ee4654ac2d4fa42
2020-10-29 11:33:52 +01:00
72a17c919b
[3.0.x] Fixed #32110 -- Doc'd and tested enumerations for ChoiceField.choices.
...
Backport of 7f85498eef
2020-10-17 21:06:57 +02:00
301bca9394
[3.0.x] Refs #31040 -- Doc'd Python 3.9 compatibility.
...
Backport of e18156b6c3
2020-10-13 08:40:39 +02:00
9deb850e23
[3.0.x] Skipped GetImageDimensionsTests.test_webp when WEBP is not installed.
...
Bumped minimum Pillow version to 4.2.0 in test requirements.
Backport of fce389af7c
2020-10-06 11:30:21 +02:00
1734484f12
[3.0.x] Added CVE-2020-24583 & CVE-2020-24584 to security archive.
...
Backport of d5b526bf78
2020-09-01 11:38:46 +02:00
26323dbcf4
[3.0.x] Post-release version bump.
2020-09-01 10:29:42 +02:00
a208020ecd
[3.0.x] Bumped version for 3.0.10 release.
2020-09-01 10:26:20 +02:00
79e6eb3853
[3.0.x] Added release date for 3.0.10, and 2.2.16.
...
Backport of 976e2b7420
2020-09-01 09:58:40 +02:00
cdb367c92a
[3.0.x] Fixed CVE-2020-24584 -- Fixed permission escalation in intermediate-level directories of the file system cache on Python 3.7+.
...
Backport of f56b57976133129b0b351a38bba4ac882badabf0 from master.
2020-08-25 10:45:33 +02:00
08892bffd2
[3.0.x] Fixed CVE-2020-24583, #31921 -- Fixed permissions on intermediate-level static and storage directories on Python 3.7+.
...
Thanks WhiteSage for the report.
Backport of ea0febbba531a3ecc8c77b570efbfb68ca7155db from master.
2020-08-25 10:43:50 +02:00
db8b935730
[3.0.x] Fixed #31925 -- Fixed typo in docs/releases/3.0.txt.
...
Backport of 3e753d3de3
2020-08-21 09:49:13 +02:00
ab5491c7cc
[3.0.x] Refs #31863 -- Added release notes for 94ea79be13.
...
Backport of 21768a99f4
2020-08-13 16:31:27 +02:00
c33b6ceff4
[3.0.x] Fixed #31863 -- Prevented mutating model state by copies of model instances.
...
Regression in bfb746f98394ea79be13
2020-08-13 15:27:52 +02:00
784ed4ada1
[3.0.x] Fixed #31866 -- Fixed locking proxy models in QuerySet.select_for_update(of=()).
...
Backport of 60626162f7
2020-08-11 12:31:50 +02:00
9f74a24803
[3.0.x] Added stub release notes for 2.2.16 and 3.0.10.
...
Backport of 8a5683b6b2
2020-08-11 11:13:20 +02:00
8f8edec6c4
[3.0.x] Post-release version bump.
2020-08-03 09:06:21 +02:00
39716e4578
[3.0.x] Bumped version for 3.0.9 release.
2020-08-03 09:02:29 +02:00
b1ae5d015b
[3.0.x] Added release date for 2.2.15 and 3.0.9.
...
Backport of b68b8cb89a
2020-08-03 08:56:37 +02:00
d70ed9439d
[3.0.x] Corrected signing.dumps()/loads() signatures in docs.
...
Backport of 8703680ebe
2020-07-31 11:34:32 +02:00
8f8d4b3d52
[3.0.x] Corrected admin.register() signature in docs.
...
Backport of eb215da363
2020-07-29 12:55:00 +02:00
e0397e11b5
[3.0.x] Refs #30165 -- Removed leftover 'u' prefix.
...
Backport of bac5777bff
2020-07-29 10:20:44 +02:00
08063f0122
[3.0.x] Fixed #31821 -- Removed outdated note in FILE_UPLOAD_PERMISSIONS docs.
...
Follow up to 22aab8662f248d03fbe9
2020-07-23 21:01:10 +02:00
6fc4445cff
[3.0.x] Fixed #31816 -- Corrected the expected content type in StreamingHttpResponse docs.
...
Backport of d754361096
2020-07-23 13:13:44 +02:00
b732afe30a
[3.0.x] Fixed typo in docs/ref/models/querysets.txt.
...
Backport of 51e536178c
2020-07-22 23:37:44 +02:00
f4b7996e9b
[3.0.x] Fixed #31814 -- Fixed typo in docs/ref/settings.txt.
...
Backport of f65454801b
2020-07-22 22:39:55 +02:00
76b7b3a778
[3.0.x] Doc'd Model.MultipleObjectsReturned docs and improved documentation related with models exceptions.
...
Backport of bc4fea92b2
2020-07-22 20:22:09 +02:00
f026d761d6
[3.0.x] Refs #24763 -- Moved DoesNotExist to Model class docs.
...
Backport of b5f0efa19c
2020-07-22 20:22:06 +02:00
dcb27ead84
[3.0.x] Fixed #31805 -- Fixed SchemaTests.tearDown() when table names are case-insensitive.
...
Backport of fd53db842c
2020-07-22 12:51:43 +02:00
1a81d34e70
[3.0.x] Fixed #31797 -- Skipped schema tests on specific MariaDB versions.
...
test_alter_not_unique_field_to_primary_key() test is affected by
https://jira.mariadb.org/browse/MDEV-19598 on MariaDB 10.4.4 to 10.5.1.
test_alter_pk_with_self_referential_field() test is affected by
https://jira.mariadb.org/browse/MDEV-22775 on MariaDB 10.4 series
from 10.4.13.
Backport of c071c408d7
2020-07-22 10:58:47 +02:00
0a3c1272f2
[3.0.x] Refs #31720 -- Added examples to BoolAnd() and BoolOr() documentation.
...
Backport of a2e621b14e
2020-07-21 07:02:29 +02:00
bcb511f9d8
[3.0.x] Improved description of USE_THOUSAND_SEPARATOR setting.
...
Backport of 80f92177eb
2020-07-20 12:56:11 +02:00
Mariusz Felisiak
Carlton Gibson
Nick Pope
Tim Graham
Max Smolens
Christian Klus
Claude Paroz
Kaustubh
Gert Burger
Daniel Hillier
Andrzej Bartosiński
Harpreet Sharma
LincolnPuzey
Ramiro Morales
Buk Bukowski
Adam Johnson
David Chorpash