diff options
| author | Tim Graham <timograham@gmail.com> | 2018-02-01 10:14:17 -0500 |
|---|---|---|
| committer | Tim Graham <timograham@gmail.com> | 2018-02-01 10:16:35 -0500 |
| commit | ab505a272fa2934371eccb254a66d16f73023c63 (patch) | |
| tree | 48bbbc82ed33f2e33acd86a76b3b0a740c07daf6 | |
| parent | b91ff0b20d3ab636a11f6e7da7af77662c522a1d (diff) | |
[2.0.x] Added CVE-2018-6188 to the security release archive.
Backport of 66119ed64233c3abe586606a9e81a75edc2a6a92 from master
| -rw-r--r-- | docs/releases/security.txt | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/docs/releases/security.txt b/docs/releases/security.txt index 910e6914c7..357ab39a2f 100644 --- a/docs/releases/security.txt +++ b/docs/releases/security.txt @@ -845,3 +845,15 @@ Versions affected * Django 1.11 `(patch) <https://github.com/django/django/commit/e35a0c56086924f331e9422daa266e907a4784cc>`__ * Django 1.10 `(patch) <https://github.com/django/django/commit/58e08e80e362db79eb0fd775dc81faad90dca47a>`__ + +February 1, 2018 - :cve:`2018-6188` +----------------------------------- + +Information leakage in ``AuthenticationForm``. `Full description +<https://www.djangoproject.com/weblog/2018/feb/01/security-releases/>`__ + +Versions affected +~~~~~~~~~~~~~~~~~ + +* Django 2.0 `(patch) <https://github.com/django/django/commit/c37bb28677295f6edda61d8ac461014ef0d3aeb2>`__ +* Django 1.11 `(patch) <https://github.com/django/django/commit/57b95fedad5e0b83fc9c81466b7d1751c6427aae>`__ |
