django.git, branch 2.1.10

django.git, branch 2.1.10 django http://cgit.adnoto.dev/django.git/atom?h=2.1.10 2019-07-01T06:27:38Z [2.1.x] Bumped version for 2.1.10 release. 2019-07-01T06:27:38Z Mariusz Felisiak felisiak.mariusz@gmail.com 2019-07-01T06:27:38Z urn:sha1:90a1cfd60002c465d9c47ad9ebc0a79ad0bc6cf9 [2.1.x] Fixed CVE-2019-12781 -- Made HttpRequest always trust SECURE_PROXY_SSL_HEADER if set. 2019-07-01T06:24:47Z Carlton Gibson carlton.gibson@noumenal.es 2019-06-13T08:57:29Z urn:sha1:1e40f427bb8d0fb37cc9f830096a97c36c97af6f An HTTP request would not be redirected to HTTPS when the SECURE_PROXY_SSL_HEADER and SECURE_SSL_REDIRECT settings were used if the proxy connected to Django via HTTPS. HttpRequest.scheme will now always trust the SECURE_PROXY_SSL_HEADER if set, rather than falling back to the request scheme when the SECURE_PROXY_SSL_HEADER did not have the secure value. Thanks to Gavin Wahl for the report and initial patch suggestion, and Shai Berger for review. Backport of 54d0f5e62f54c29a12dd96f44bacd810cbe03ac8 from master [2.1.x] Added stub release notes for security releases. 2019-07-01T05:04:03Z Mariusz Felisiak felisiak.mariusz@gmail.com 2019-06-20T08:45:38Z urn:sha1:87be9c9626014a2754729d6293cb4c86ba294354 Backport of 30b3ee9d0b33bb440f9c73d1ce9e0e7303887a9f from master [2.1.x] Fixed GeoIPTest.test04_city() failure with the latest GeoIP2 database. 2019-06-30T18:17:44Z Mariusz Felisiak felisiak.mariusz@gmail.com 2019-06-27T13:09:28Z urn:sha1:757c226fd6f6e68116a2bbffab9c7367e11e3ed8 Backport of 4305fbe8b11f44ab5d6759346488026c1e9677b2 from master [2.1.x] Bumped minimum ESLint version to 4.18.2. 2019-06-21T16:04:44Z Markus Holtermann info@markusholtermann.eu 2019-06-21T15:57:36Z urn:sha1:20968e3eaee8977da3003e18f09acc3741567814 Backport of ad7b438002f1ab2a0ccb321012182991737ea84e from master. [2.1.x] Added CVE-2019-12308 to the security release archive. 2019-06-03T19:46:58Z Nick Pope nick.pope@flightdataservices.com 2019-06-03T19:17:39Z urn:sha1:d58f8e4235001a1673bf62bfe3e397fc9bbb41b4 Backport of 21b1d239125f1228e579b1ce8d94d4d5feadd2a6 from master [2.1.x] Added CVE-2019-11358 to the security release archive. 2019-06-03T19:46:54Z Nick Pope nick.pope@flightdataservices.com 2019-06-03T19:15:59Z urn:sha1:8827e0994473225bbb1a8c6c26a07d06bbc94305 Backport of 8fb0ea55830321852a4a051a478f78e24d4f6889 from master [2.1.x] Fixed typos in 1.11.21, 2.1.9, 2.2.2 release notes. 2019-06-03T12:12:40Z Mariusz Felisiak felisiak.mariusz@gmail.com 2019-06-03T11:16:29Z urn:sha1:73158f19f19400dc324acf6a6a69ce985a8bb3cb Backport of 100ec901aebebe56b61f101af38a228414098dd5 from master [2.1.x] Post-release version bump. 2019-06-03T10:00:09Z Carlton Gibson carlton.gibson@noumenal.es 2019-06-03T09:58:25Z urn:sha1:eecf5a1474d23422a3c1fe01afc73ed866283957 [2.1.x] Bumped version for 2.1.9 release. 2019-06-03T09:55:22Z Carlton Gibson carlton.gibson@noumenal.es 2019-06-03T09:55:22Z urn:sha1:60ebd195c99884e0cf0aee721839119079bb3046