Django/django
11
0
Fork 0
Code Pull Requests Projects Releases Activity
20,843 Commits 26 Branches 382 Tags
Commit Graph

20843 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tim Graham
6a0dc2176f [1.8.x] Added CVE-2018-7536,7 to the security release archive. 
Backport of 5bbbdd26d1ea4f3bb164ad64b0d0d458d8bfdd02 from master
 2018-03-06 13:10:07 -05:00
Tim Graham
1bdd9e5f5d [1.8.x] Added CVE-2018-6188 to the security release archive. 
Backport of 66119ed64233c3abe586606a9e81a75edc2a6a92 from master
 2018-03-06 13:09:57 -05:00
Tim Graham
baa1d60eb4 [1.8.x] Post-release version bump. 2018-03-06 09:37:53 -05:00
Tim Graham
c686dd8e6b [1.8.x] Bumped version for 1.8.19 release. 1.8.19 2018-03-06 09:17:43 -05:00
Tim Graham
d17974a287 [1.8.x] Fixed CVE-2018-7537 -- Fixed catastrophic backtracking in django.utils.text.Truncator. 
Thanks James Davis for suggesting the fix.
 2018-03-01 11:58:41 -05:00
Tim Graham
1ca63a66ef [1.8.x] Fixed CVE-2018-7536 -- Fixed catastrophic backtracking in urlize and urlizetrunc template filters. 
Thanks Florian Apolloner for assisting with the patch.
 2018-03-01 11:58:41 -05:00
Tim Graham
10f11f2221 [1.8.x] Added stub release notes for security release. 2018-03-01 11:58:41 -05:00
Tim Graham
1bbde54176 [1.8.x] Switched test requirement to new psycopg2-binary package. 
Backport of d4373b6da4b420fe9211438addeedb396a3821be from master
 2018-03-01 11:47:29 -05:00
Tim Graham
d92f899cb5 [1.8.x] Fixed GeoIP test failure with the latest data. 2018-01-08 10:00:21 -05:00
Sergey Fedoseev
e0b3681838 [1.8.x] Fixed typo in docs/topics/testing/advanced.txt. 
Backport of 3922f02dc6b10a3268a710a2837027d3999957a3 from master
 2017-12-04 12:03:03 +01:00
Tim Graham
97dfc30f5b [1.8.x] Fixed #28802 -- Fixed typo in docs/topics/auth/default.txt. 
Backport of d392fc293c9439c19451e152f9560f24d1659563 from master
 2017-11-16 10:39:59 -05:00
Tim Graham
e3cf8d2e94 [1.8.x] Fixed #28561 -- Removed inaccurate docs about QuerySet.order_by() and joins. 
As of ccbba98131ace3beb43790c65e8f4eee94e9631c, both examples don't use
a join.

Backport of 44a6c27fd461e1d2f37388c26c629f8f170e8722 from master
 2017-09-06 19:33:36 -04:00
Tim Graham
5e5c056e0e [1.8.x] Added 2017-12794 to the security release archive. 
Backport of 79ae5811c7b06b6462f9411b6665241a4e98bedb from master
 2017-09-05 12:33:47 -04:00
Berker Peksag
16dfaa5f94 [1.8.x] Removed redundant backticks in docs/releases/1.8.txt 
Backport of 8d095c6378666e6d5f6cabc9e485c9db2618ff88 from master.
 2017-08-21 12:15:29 +02:00
Mariusz Felisiak
31ddf51b52 [1.8.x] Fixed gis_tests.geoapp test with incorrect geodetic coordinates. 
The latitude coordinates exceed -90, 90 bounds and caused a test failure
on Oracle 12.2.

Thanks Michał Wierzbowski for help preparing the patch.

Backport of 037d6540ecb7a60dca99162f6adedb2d879fa3ff from master
 2017-05-30 10:18:20 -04:00
Tim Graham
8781713fd7 [1.8.x] Fixed docs build with Sphinx 1.6. 
Backport of f370bfb10878918eae8db9985e0856949fa65d3a from master
 2017-05-24 12:15:07 -04:00
Tim Graham
7dc480e4f7 [1.8.x] Removed a docs workaround for an old Sphinx version. 
Backport of c315f9602418d2fcfe194b1ef2d0d7c325cac151 from master
 2017-05-24 11:53:15 -04:00
Tim Graham
8aee493bd4 [1.8.x] Corrected removal of deprecated sphinx.util.compat.Directive. 
Follow up to d2e39b20a9b1407f7b40598bd4caf234d8478af2
 2017-05-24 11:08:38 -04:00
Tim Graham
d2e39b20a9 [1.8.x] Removed usage of deprecated sphinx.util.compat.Directive. 
Backport of cb16458c4f91fe43b898b55b04fb177e914ac3af from master
 2017-05-24 10:55:06 -04:00
Tim Graham
0b9f366c60 [1.8.x] Added CVE-2017-7233,4 to the security release archive. 
Backport of b749c980a066a15b58b236656e57b66073a35a52 from master
 2017-04-04 21:53:50 -04:00
Tim Graham
ba046f9994 [1.8.x] Post-release version bump. 2017-04-04 12:19:30 -04:00
Tim Graham
2d4bc5a60a [1.8.x] Bumped version for 1.8.18 release. 1.8.18 2017-04-04 10:03:09 -04:00
Tim Graham
8339277518 [1.8.x] Fixed #27912, CVE-2017-7233 -- Fixed is_safe_url() with numeric URLs. 
This is a security fix.
 2017-03-28 12:57:34 -04:00
Tim Graham
4a6b945dff [1.8.x] Fixed CVE-2017-7234 -- Fixed open redirect vulnerability in views.static.serve(). 
This is a security fix.
 2017-03-28 12:57:34 -04:00
Tim Graham
081c263dff [1.8.x] Added stub release notes for security release. 2017-03-28 12:57:33 -04:00
Tim Graham
87851581a0 [1.8.x] Pinned test requirement to numpy < 1.12 for Python 3.3 compatibility. 2017-03-28 12:56:01 -04:00
Mariusz Felisiak
998bc0ced2 [1.8.x] Refs #27924 -- Doc'd that cx_Oracle < 5.3 is required. 
Thanks Tim Graham for the review.

Backport of 46d602dcea624bef3fb6e1dbf71378d837c0957b from stable/1.10.x
 2017-03-11 22:17:05 +01:00
Tim Graham
4b5aec3b0b [1.8.x] Fixed a backends test with psycopg2 2.7. 
Backport of 49a63d08d3b3e2ac32e391d1413a4ac99429e4af from master
 2017-03-01 13:22:53 -05:00
Tim Graham
299529dca6 [1.8.x] Fixed GeoIP test failure with the latest data. 
Backport of da2e92d25ea32a25679d99525365ac7ac8e297ee from stable/1.11.x
 2017-02-14 09:48:26 -05:00
Tim Graham
b248f33130 [1.8.x] Removed deprecated html_translator_class sphinx config option. 
Backport of bacdfbf3d1eb23ff8e8110681728a5b467443446 and
e5d3f98abcdc20d64d99609bd0aa82331835b439 from master
 2017-01-23 10:24:45 -05:00
Tim Graham
0311b7e637 [1.8.x] Declared Sphinx extensions safe for parallel reading. 
Backport of 03306a187ec3bb5e2592728a900d4a41185f9e30 from master
 2017-01-23 10:24:17 -05:00
Tim Graham
c9ba3450bd [1.8.x] Fixed #27616 -- Fixed incorrect vary_on_headers() example. 
Backport of 5e239ae907291d07a3fcf9329f83c27fa6d72981 from master
 2016-12-20 08:30:54 -05:00
Tim Graham
01b3dc2232 [1.8.x] Reverted "Fixed #27594 -- Fixed select_related() with reverse self-referential OneToOneField." 
This reverts commit 4a9f9cc521f09c60f56024eb6688e30ab86b998f. It was
accidentally pushed to this branch.
 2016-12-14 07:53:45 -05:00
Daniel Hillier
4a9f9cc521 Fixed #27594 -- Fixed select_related() with reverse self-referential OneToOneField. 
Fix definition of `klass_info['from_parent']`. The relationship between
two models shouldn't be considered as being from a parent class if the
model classes are the same.

Thanks Tim for the review.
 2016-12-14 07:38:09 -05:00
Tim Graham
fa596f82a6 [1.8.x] Post-release version bump. 2016-12-01 18:05:03 -05:00
Tim Graham
d3d12fc11d [1.8.x] Bumped version for 1.8.17 release. 1.8.17 2016-12-01 17:20:59 -05:00
Tim Graham
b2fff69aa6 [1.8.x] Added release date for 1.8.17. 
Backport of 9ea9686532336caefcd5fedb76ad9a68a512d243 from master
 2016-12-01 17:16:55 -05:00
Tim Graham
9b6b561d4a [1.8.x] Ignored flake8's newly added E305, E741, E743. 2016-11-14 18:34:36 -05:00
Mariusz Felisiak
32f50999cd [1.8.x] Fixed #27420 -- Quoted the Oracle test user password in queries. 
Backport of c4b04e1598c4325454c808183dce17b284ed9e28 from master
 2016-11-08 16:45:12 -05:00
Tim Graham
90c61538ba [1.8.x] Added CVE-2016-9013,14 to the security release archive. 
Backport of b8ae2c16cfc4bf88c1720eafd8e35438181a7413 from master
 2016-11-01 10:48:58 -04:00
Tim Graham
dd9dd58f41 [1.8.x] Post-release version bump. 2016-11-01 10:23:07 -04:00
Tim Graham
aa10ba0961 [1.8.x] Bumped version for 1.8.16 release. 1.8.16 2016-11-01 09:42:47 -04:00
Tim Graham
c401ae9a7d [1.8.x] Fixed CVE-2016-9014 -- Validated Host header when DEBUG=True. 
This is a security fix.
 2016-10-25 15:27:45 -04:00
Marti Raudsepp
70f9995296 [1.8.x] Fixed CVE-2016-9013 -- Generated a random database user password when running tests on Oracle. 
This is a security fix.
 2016-10-25 14:24:11 -04:00
Tim Graham
33bf6220e2 [1.8.x] Added stub release notes for 1.8.16. 2016-10-25 13:56:26 -04:00
Tim Graham
aba8f2b501 [1.8.x] Fixed #27342 -- Corrected QuerySet.update_or_create() example. 
Backport of 51b83d9e5113ea5b81d04f4d117bd5acd3c1b822 from master
 2016-10-13 11:03:38 -04:00
Tim Graham
1c4334f793 [1.8.x] Fixed nonexistent tmc.edu domain in GeoIP test. 
Backport of e1f6eba033abea25cd6b0577bd66c655ec453325 from master
 2016-10-11 19:44:09 -04:00
Tim Graham
3141b79d26 [1.8.x] Fixed #27307 -- Added missing url names in sitemaps docs. 
Backport of fe1aee6b98d2a94ecc983463938135d192ef9afc from master
 2016-10-03 16:05:56 -04:00
Alasdair Nicol
6e24eeef60 [1.8.x] Fixed 27283 -- Fixed typo in 1.8 release notes. 
Backport of 32031718320e1b4d708b15d8c67738e4c77c9bc7 from master
 2016-09-28 06:51:42 -04:00
Tim Graham
d5430a5ff9 [1.8.x] Added CVE-2016-7401 to the security release archive. 
Backport of 6fe846a8f08dc959003f298b5407e321c6fe3735 from master
 2016-09-26 18:30:31 -04:00