diff options
| author | Tim Graham <timograham@gmail.com> | 2018-02-01 10:14:17 -0500 |
|---|---|---|
| committer | Tim Graham <timograham@gmail.com> | 2018-02-01 10:16:48 -0500 |
| commit | 01448a97e075df08ed0f89c443ee35e649dfb630 (patch) | |
| tree | e85b4bed220832fd4b1f26da4191d95550961b55 /docs | |
| parent | 1a4085abcbe3f1f4a1ebbf4eac1fd7bb802eb58e (diff) | |
[1.11.x] Added CVE-2018-6188 to the security release archive.
Backport of 66119ed64233c3abe586606a9e81a75edc2a6a92 from master
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/releases/security.txt | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/docs/releases/security.txt b/docs/releases/security.txt index 910e6914c7..357ab39a2f 100644 --- a/docs/releases/security.txt +++ b/docs/releases/security.txt @@ -845,3 +845,15 @@ Versions affected * Django 1.11 `(patch) <https://github.com/django/django/commit/e35a0c56086924f331e9422daa266e907a4784cc>`__ * Django 1.10 `(patch) <https://github.com/django/django/commit/58e08e80e362db79eb0fd775dc81faad90dca47a>`__ + +February 1, 2018 - :cve:`2018-6188` +----------------------------------- + +Information leakage in ``AuthenticationForm``. `Full description +<https://www.djangoproject.com/weblog/2018/feb/01/security-releases/>`__ + +Versions affected +~~~~~~~~~~~~~~~~~ + +* Django 2.0 `(patch) <https://github.com/django/django/commit/c37bb28677295f6edda61d8ac461014ef0d3aeb2>`__ +* Django 1.11 `(patch) <https://github.com/django/django/commit/57b95fedad5e0b83fc9c81466b7d1751c6427aae>`__ |
