p31829507
/
django
mirror of https://github.com/django/django.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

[2.0.x] Added CVE-2018-6188 to the security release archive. 

Backport of 66119ed642 from master
This commit is contained in:
Tim Graham 2018-02-01 10:14:17 -05:00
parent b91ff0b20d
commit ab505a272f
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
docs/releases/security.txt
View File

@ -845,3 +845,15 @@ Versions affected
* Django 1.11 `(patch) <https://github.com/django/django/commit/e35a0c56086924f331e9422daa266e907a4784cc>`__
* Django 1.10 `(patch) <https://github.com/django/django/commit/58e08e80e362db79eb0fd775dc81faad90dca47a>`__
February 1, 2018 - :cve:`2018-6188`
-----------------------------------
Information leakage in ``AuthenticationForm``. `Full description
<https://www.djangoproject.com/weblog/2018/feb/01/security-releases/>`__
Versions affected
~~~~~~~~~~~~~~~~~
* Django 2.0 `(patch) <https://github.com/django/django/commit/c37bb28677295f6edda61d8ac461014ef0d3aeb2>`__
* Django 1.11 `(patch) <https://github.com/django/django/commit/57b95fedad5e0b83fc9c81466b7d1751c6427aae>`__