summaryrefslogtreecommitdiff
path: root/django
AgeCommit message (Expand)Author
2014-04-21[1.4.x] Bump version numbers for 1.4.11 security release.1.4.11James Bennett
2014-04-21[1.4.x] Fixed queries that may return unexpected results on MySQL due to type...Erik Romijn
2014-04-21[1.4.x] Prevented leaking the CSRF token through caching.Aymeric Augustin
2014-04-21[1.4.x] Fixed a remote code execution vulnerabilty in URL reversing.Tim Graham
2014-03-24[1.4.x] Updated six to 1.6.1.Tim Graham
2014-01-26[1.4.x] Fixed #21823 -- Upgraded six to 1.5.2Tim Graham
2014-01-02Updated six to version 1.4.1Luke Plant
2013-11-06[1.4.x] Bump version info and add release notes for 1.4.10.1.4.10James Bennett
2013-11-02Fixed #21362 -- Restored Python 2.5 compatibility.Florian Apolloner
2013-10-25[1.4.x] Bump version post-release.Tim Graham
2013-10-24[1.4.x] Bump everything for 1.4.9 bugfix release.1.4.9James Bennett
2013-10-21[1.4.x] Fixed #21253 -- PBKDF2 with cached HMAC keyFlorian Apolloner
2013-10-13[1.4.x] Fixed #21256 -- Error in datetime_safe.datetime.combine.Aymeric Augustin
2013-10-09[1.4.x] Fixed #21248 -- Skipped test_bcrypt if no py-bcrypt foundAnssi Kääriäinen
2013-09-24[1.4.x] Fixed #21138 -- Increased the performance of our PBKDF2 implementation.Florian Apolloner
2013-09-24Revert "[1.4.x] Ensure that passwords are never long enough for a DoS."Florian Apolloner
2013-09-15[1.4.x] Bump version post-release.Tim Graham
2013-09-15[1.4.x] Fixed geos test to prevent random failureClaude Paroz
2013-09-15[1.4.x] Removed usage of b"" string syntax for Python 2.5 compatibility.1.4.8Russell Keith-Magee
2013-09-14[1.4.x] Add release notes and bump version numbers for 1.4.8 security release.James Bennett
2013-09-15[1.4.x] Ensure that passwords are never long enough for a DoS.Russell Keith-Magee
2013-09-13Fixed #18923 -- Corrected usage of sensitive_post_parameters in contrib.authTim Graham
2013-09-11[1.4.x] Bump version post-release.Tim Graham
2013-09-10[1.4.x] Bump version numbers for 1.4.7 security release.1.4.7James Bennett
2013-09-10[1.4.x] Prevented arbitrary file inclusion with {% ssi %} tag and relative pa...Tim Graham
2013-09-09[1.4.x] Fixed #20707 -- Added explicit quota assignment to Oracle test userСадовский Николай
2013-08-18[1.4.x] Fixed #20907 - Test failure on OracleShai Berger
2013-08-13Bump version post-release.Jacob Kaplan-Moss
2013-08-13Bumped version numbers for 1.4.6.Jacob Kaplan-Moss
2013-08-13Fixed is_safe_url() to reject URLs that use a scheme other than HTTP/S.Jacob Kaplan-Moss
2013-06-24[1.4.x] Fixed oversight in e3b6fed3. Refs #20636.Aymeric Augustin
2013-06-24[1.4.x] Fixed #20636 -- Stopped stuffing values in the settings.Aymeric Augustin
2013-03-28[1.4.x] Bump version to no longer claim to be 1.4.5 final.Carl Meyer
2013-02-25[1.4.x] Fixed #18144 -- Restored compatibility with SHA1 hashes with empty salt.Aymeric Augustin
2013-02-21[1.4.x] Made a couple of selenium tests wait for page loadedAnssi Kääriäinen
2013-02-20[1.4.x] Bump version numbers to roll a clean package.1.4.5James Bennett
2013-02-19[1.4.x] Fixed #19857 -- Fixed broken docs link in project template.Carl Meyer
2013-02-19[1.4.x] Bump version numbers for security release.1.4.4James Bennett
2013-02-19[1.4.x] Added a default limit to the maximum number of forms in a formset.Aymeric Augustin
2013-02-19[1.4.x] Checked object permissions on admin history view.Carl Meyer
2013-02-19[1.4.x] Restrict the XML deserializer to prevent network and entity-expansion...Carl Meyer
2013-02-19[1.4.x] Added ALLOWED_HOSTS setting for HTTP host header validation.Carl Meyer
2013-02-13[1.4.x] Removed try-except in django.db.close_connection()Anssi Kääriäinen
2013-02-10[1.4.x] Made custom m2m fields without through easier to useAnssi Kääriäinen
2013-02-10[1.4.x] Fixed #19707 -- Reset transaction state after requestsAnssi Kääriäinen
2013-02-02[1.4.x] Fixed #19702 -- Changed a SQL command syntax to be MySQL 4-compatibleClaude Paroz
2013-02-02[1.5.x] Lowered field ordering requirement in ogrinspect testClaude Paroz
2013-02-02[1.4.x] Fixed #18144 -- Added backwards compatibility with old unsalted MD5 p...Claude Paroz
2012-12-10[1.4.x] Bump version numbers for security release.1.4.3James Bennett
2012-12-10[1.4.X] Fixed a security issue in get_host.Florian Apolloner