p15693087
/
django
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
20,843 Commits 25 Branches 361 Tags 501 MiB
Commit Graph

20843 Commits

Author SHA1 Message Date
Tim Graham 6a0dc2176f [1.8.x] Added CVE-2018-7536,7 to the security release archive. 
Backport of 5bbbdd26d1 from master
 2018-03-06 13:10:07 -05:00
Tim Graham 1bdd9e5f5d [1.8.x] Added CVE-2018-6188 to the security release archive. 
Backport of 66119ed642 from master
 2018-03-06 13:09:57 -05:00
Tim Graham baa1d60eb4 [1.8.x] Post-release version bump. 2018-03-06 09:37:53 -05:00
Tim Graham c686dd8e6b [1.8.x] Bumped version for 1.8.19 release. 2018-03-06 09:17:43 -05:00
Tim Graham d17974a287 [1.8.x] Fixed CVE-2018-7537 -- Fixed catastrophic backtracking in django.utils.text.Truncator. 
Thanks James Davis for suggesting the fix.
 2018-03-01 11:58:41 -05:00
Tim Graham 1ca63a66ef [1.8.x] Fixed CVE-2018-7536 -- Fixed catastrophic backtracking in urlize and urlizetrunc template filters. 
Thanks Florian Apolloner for assisting with the patch.
 2018-03-01 11:58:41 -05:00
Tim Graham 10f11f2221 [1.8.x] Added stub release notes for security release. 2018-03-01 11:58:41 -05:00
Tim Graham 1bbde54176 [1.8.x] Switched test requirement to new psycopg2-binary package. 
Backport of d4373b6da4 from master
 2018-03-01 11:47:29 -05:00
Tim Graham d92f899cb5 [1.8.x] Fixed GeoIP test failure with the latest data. 2018-01-08 10:00:21 -05:00
Sergey Fedoseev e0b3681838 [1.8.x] Fixed typo in docs/topics/testing/advanced.txt. 
Backport of 3922f02dc6 from master
 2017-12-04 12:03:03 +01:00
Tim Graham 97dfc30f5b [1.8.x] Fixed #28802 -- Fixed typo in docs/topics/auth/default.txt. 
Backport of d392fc293c from master
 2017-11-16 10:39:59 -05:00
Tim Graham e3cf8d2e94 [1.8.x] Fixed #28561 -- Removed inaccurate docs about QuerySet.order_by() and joins. 
As of ccbba98131, both examples don't use
a join.

Backport of 44a6c27fd4 from master
 2017-09-06 19:33:36 -04:00
Tim Graham 5e5c056e0e [1.8.x] Added 2017-12794 to the security release archive. 
Backport of 79ae5811c7 from master
 2017-09-05 12:33:47 -04:00
Berker Peksag 16dfaa5f94 [1.8.x] Removed redundant backticks in docs/releases/1.8.txt 
Backport of 8d095c6378 from master.
 2017-08-21 12:15:29 +02:00
Mariusz Felisiak 31ddf51b52 [1.8.x] Fixed gis_tests.geoapp test with incorrect geodetic coordinates. 
The latitude coordinates exceed -90, 90 bounds and caused a test failure
on Oracle 12.2.

Thanks Michał Wierzbowski for help preparing the patch.

Backport of 037d6540ec from master
 2017-05-30 10:18:20 -04:00
Tim Graham 8781713fd7 [1.8.x] Fixed docs build with Sphinx 1.6. 
Backport of f370bfb108 from master
 2017-05-24 12:15:07 -04:00
Tim Graham 7dc480e4f7 [1.8.x] Removed a docs workaround for an old Sphinx version. 
Backport of c315f96024 from master
 2017-05-24 11:53:15 -04:00
Tim Graham 8aee493bd4 [1.8.x] Corrected removal of deprecated sphinx.util.compat.Directive. 
Follow up to d2e39b20a9
 2017-05-24 11:08:38 -04:00
Tim Graham d2e39b20a9 [1.8.x] Removed usage of deprecated sphinx.util.compat.Directive. 
Backport of cb16458c4f from master
 2017-05-24 10:55:06 -04:00
Tim Graham 0b9f366c60 [1.8.x] Added CVE-2017-7233,4 to the security release archive. 
Backport of b749c980a0 from master
 2017-04-04 21:53:50 -04:00
Tim Graham ba046f9994 [1.8.x] Post-release version bump. 2017-04-04 12:19:30 -04:00
Tim Graham 2d4bc5a60a [1.8.x] Bumped version for 1.8.18 release. 2017-04-04 10:03:09 -04:00
Tim Graham 8339277518 [1.8.x] Fixed #27912, CVE-2017-7233 -- Fixed is_safe_url() with numeric URLs. 
This is a security fix.
 2017-03-28 12:57:34 -04:00
Tim Graham 4a6b945dff [1.8.x] Fixed CVE-2017-7234 -- Fixed open redirect vulnerability in views.static.serve(). 
This is a security fix.
 2017-03-28 12:57:34 -04:00
Tim Graham 081c263dff [1.8.x] Added stub release notes for security release. 2017-03-28 12:57:33 -04:00
Tim Graham 87851581a0 [1.8.x] Pinned test requirement to numpy < 1.12 for Python 3.3 compatibility. 2017-03-28 12:56:01 -04:00
Mariusz Felisiak 998bc0ced2 [1.8.x] Refs #27924 -- Doc'd that cx_Oracle < 5.3 is required. 
Thanks Tim Graham for the review.

Backport of 46d602dcea from stable/1.10.x
 2017-03-11 22:17:05 +01:00
Tim Graham 4b5aec3b0b [1.8.x] Fixed a backends test with psycopg2 2.7. 
Backport of 49a63d08d3 from master
 2017-03-01 13:22:53 -05:00
Tim Graham 299529dca6 [1.8.x] Fixed GeoIP test failure with the latest data. 
Backport of da2e92d25e from stable/1.11.x
 2017-02-14 09:48:26 -05:00
Tim Graham b248f33130 [1.8.x] Removed deprecated html_translator_class sphinx config option. 
Backport of bacdfbf3d1 and
e5d3f98abc from master
 2017-01-23 10:24:45 -05:00
Tim Graham 0311b7e637 [1.8.x] Declared Sphinx extensions safe for parallel reading. 
Backport of 03306a187e from master
 2017-01-23 10:24:17 -05:00
Tim Graham c9ba3450bd [1.8.x] Fixed #27616 -- Fixed incorrect vary_on_headers() example. 
Backport of 5e239ae907 from master
 2016-12-20 08:30:54 -05:00
Tim Graham 01b3dc2232 [1.8.x] Reverted "Fixed #27594 -- Fixed select_related() with reverse self-referential OneToOneField." 
This reverts commit 4a9f9cc521. It was
accidentally pushed to this branch.
 2016-12-14 07:53:45 -05:00
Daniel Hillier 4a9f9cc521 Fixed #27594 -- Fixed select_related() with reverse self-referential OneToOneField. 
Fix definition of `klass_info['from_parent']`. The relationship between
two models shouldn't be considered as being from a parent class if the
model classes are the same.

Thanks Tim for the review.
 2016-12-14 07:38:09 -05:00
Tim Graham fa596f82a6 [1.8.x] Post-release version bump. 2016-12-01 18:05:03 -05:00
Tim Graham d3d12fc11d [1.8.x] Bumped version for 1.8.17 release. 2016-12-01 17:20:59 -05:00
Tim Graham b2fff69aa6 [1.8.x] Added release date for 1.8.17. 
Backport of 9ea9686532 from master
 2016-12-01 17:16:55 -05:00
Tim Graham 9b6b561d4a [1.8.x] Ignored flake8's newly added E305, E741, E743. 2016-11-14 18:34:36 -05:00
Mariusz Felisiak 32f50999cd [1.8.x] Fixed #27420 -- Quoted the Oracle test user password in queries. 
Backport of c4b04e1598 from master
 2016-11-08 16:45:12 -05:00
Tim Graham 90c61538ba [1.8.x] Added CVE-2016-9013,14 to the security release archive. 
Backport of b8ae2c16cf from master
 2016-11-01 10:48:58 -04:00
Tim Graham dd9dd58f41 [1.8.x] Post-release version bump. 2016-11-01 10:23:07 -04:00
Tim Graham aa10ba0961 [1.8.x] Bumped version for 1.8.16 release. 2016-11-01 09:42:47 -04:00
Tim Graham c401ae9a7d [1.8.x] Fixed CVE-2016-9014 -- Validated Host header when DEBUG=True. 
This is a security fix.
 2016-10-25 15:27:45 -04:00
Marti Raudsepp 70f9995296 [1.8.x] Fixed CVE-2016-9013 -- Generated a random database user password when running tests on Oracle. 
This is a security fix.
 2016-10-25 14:24:11 -04:00
Tim Graham 33bf6220e2 [1.8.x] Added stub release notes for 1.8.16. 2016-10-25 13:56:26 -04:00
Tim Graham aba8f2b501 [1.8.x] Fixed #27342 -- Corrected QuerySet.update_or_create() example. 
Backport of 51b83d9e51 from master
 2016-10-13 11:03:38 -04:00
Tim Graham 1c4334f793 [1.8.x] Fixed nonexistent tmc.edu domain in GeoIP test. 
Backport of e1f6eba033 from master
 2016-10-11 19:44:09 -04:00
Tim Graham 3141b79d26 [1.8.x] Fixed #27307 -- Added missing url names in sitemaps docs. 
Backport of fe1aee6b98 from master
 2016-10-03 16:05:56 -04:00
Alasdair Nicol 6e24eeef60 [1.8.x] Fixed 27283 -- Fixed typo in 1.8 release notes. 
Backport of 3203171832 from master
 2016-09-28 06:51:42 -04:00
Tim Graham d5430a5ff9 [1.8.x] Added CVE-2016-7401 to the security release archive. 
Backport of 6fe846a8f0 from master
 2016-09-26 18:30:31 -04:00