summaryrefslogtreecommitdiff
path: root/docs/releases
AgeCommit message (Collapse)Author
2022-08-03Fixed typo in docs/releases/4.2.txt.NOTHING
2022-08-03Fixed #33886 -- Reallowed using GeoIP2() when GEOS is not installed.Aarni Koskela
Regression in 31bef51d8ea5e3bf650de1495ae1f0566670b8f3.
2022-08-03Fixed #33872 -- Deprecated ↵Mariusz Felisiak
django.contrib.postgres.fields.CIText/CICharField/CIEmailField/CITextField.
2022-08-03Added stub release notes for 4.1.1.Carlton Gibson
2022-08-03Updated release notes for Django 4.1 release.Carlton Gibson
2022-08-03Added CVE-2022-36359 to security archive.Carlton Gibson
2022-08-03Fixed CVE-2022-36359 -- Escaped filename in Content-Disposition header.Carlton Gibson
Thanks to Motoyasu Saburi for the report.
2022-08-03Adjusted version 4.0.7 release notes.Carlton Gibson
2022-08-02Fixed #33690 -- Added switch button for dark mode in the admin.Sarah Abderemane
2022-08-01Refs #25706 -- Removed inline CSS in the openlayers widget template.Claude Paroz
2022-07-30Fixed #33442 -- Allowed GeoIP2 to use DB-IP Lite datasets.Claude Paroz
2022-07-27Adjusted release notes for 4.0.7 and 3.2.15.Carlton Gibson
2022-07-27Added release date and stub release notes for 4.0.7 and 3.2.15 releases.Carlton Gibson
2022-07-26Refs #27236 -- Doc'd that AlterIndexTogether is no longer officially ↵Mariusz Felisiak
supported for Django 4.2+ migration files.
2022-07-26Refs #27236 -- Reverted "Refs #27236 -- Added generic mechanism to handle ↵Mariusz Felisiak
the deprecation of migration operations." This reverts commit 41019e48bbf082c985e6ba3bad34d118b903bff1.
2022-07-26Refs #27236 -- Reverted AlterIndexTogether deprecation.Mariusz Felisiak
This partly reverts a6385b382e05a614a99e5a5913d8e631823159a2.
2022-07-25Fixed #33866 -- Added pathlib.Path support to GDALRaster constructor.Claude Paroz
2022-07-23Refs #33691 -- Deprecated insecure password hashers.Claude Paroz
SHA1PasswordHasher, UnsaltedSHA1PasswordHasher, and UnsaltedMD5PasswordHasher are now deprecated.
2022-07-23Fixed #33864 -- Deprecated length_is template filter.Nick Pope
2022-07-14Fixed #33631 -- Marked {% blocktranslate asvar %} result as HTML safe.cheng
2022-07-12Fixed #27236 -- Deprecated Meta.index_together in favor of Meta.indexes.David Wobrock
This also deprecates AlterIndexTogether migration operation.
2022-07-09Refs CVE-2022-34265 -- Unified DatabaseOperations._convert_*_to_tz() hook names.Mariusz Felisiak
2022-07-08Fixed #33718 -- Dropped support for MySQL 5.7.Mariusz Felisiak
2022-07-08Refs #27236 -- Added generic mechanism to handle the deprecation of ↵David Wobrock
migration operations.
2022-07-06Refs CVE-2022-34265 -- Properly escaped Extract() and Trunc() parameters.Simon Charette
Co-authored-by: Mariusz Felisiak <felisiak.mariusz@gmail.com>
2022-07-04Added CVE-2022-34265 to security archive.Mariusz Felisiak
2022-07-04Added stub release notes for 4.0.7.Mariusz Felisiak
2022-07-04Fixed CVE-2022-34265 -- Protected Trunc(kind)/Extract(lookup_name) against ↵Mariusz Felisiak
SQL injection. Thanks Takuto Yoshikai (Aeye Security Lab) for the report.
2022-07-01Updated vendored _urlsplit() to strip newline and tabs.Michael Manfre
Refs Python CVE-2022-0391. Django is not affected, but others who incorrectly use internal function url_has_allowed_host_and_scheme() with unsanitized input could be at risk.
2022-06-28Refs #33697 -- Added backward incompatibility note about removing ↵Mariusz Felisiak
multipartparser.parse_header().
2022-06-28Fixed #33779 -- Allowed customizing encoder class in ↵Hrushikesh Vaidya
django.utils.html.json_script().
2022-06-27Added stub release notes and release date for 4.0.6 and 3.2.14.Mariusz Felisiak
2022-06-21Fixed #33789 -- Doc'd changes in quoting table/column names on Oracle in ↵Mariusz Felisiak
Django 4.0. Thanks Paul in 't Hout for the report. Regression in 1f643c28b5f2b039c47155692844dbae1cb091cd.
2022-06-20Fixed #32969 -- Fixed pickling HttpResponse and subclasses.Anv3sh
2022-06-17Fixed #33788 -- Added TrigramStrictWordSimilarity() and ↵Matt Brewer
TrigramStrictWordDistance() on PostgreSQL.
2022-06-17Fixed #24870 -- Added --update option to makemigrations command.David Wobrock
2022-06-16Updated asgiref dependency for 4.1 release series.Carlton Gibson
2022-06-08Fixed #33565 -- Improved locale format validation for the makemessages command.Ronnie van den Crommenacker
2022-06-03Fixed #33764 -- Deprecated BaseUserManager.make_random_password().Ciaran McCormick
2022-06-01Fixed #33742 -- Added id to GeoJSON serializer.Samir Shah
2022-06-01Added stub release notes for 4.0.6.Carlton Gibson
2022-06-01Updated release date for Django 4.0.5.Carlton Gibson
2022-05-31Fixed docs build with sphinxcontrib-spelling 7.5.0+.Mariusz Felisiak
sphinxcontrib-spelling 7.5.0+ includes captions of figures in the set of nodes for which the text is checked.
2022-05-24Fixed #33724 -- Doc'd exclude argument changes in model validation.Mariusz Felisiak
Thanks אורי for the report. Follow up to 1ea7e3157d1f9b4db71e768d75ea57e47dbd49f9.
2022-05-21Fixed #33725 -- Made hidden quick filter in admin's navigation sidebar not ↵Sankalp
focusable. Regression in d915dd1c5809d7c2bb3679751cd5277571dcd9f7. Follow up to 780473d75625d014cbe9b0acdea40b7a5970d5d8.
2022-05-19Fixed #33717 -- Dropped support for PostgreSQL 11.Mariusz Felisiak
2022-05-19Fixed #33705 -- Fixed crash when using IsNull() lookup in filters.David Wobrock
Thanks Florian Apolloner for the report. Thanks Simon Charette for the review.
2022-05-18Fixed #33713 -- Dropped support for MariaDB 10.3.Mariusz Felisiak
2022-05-17Increased the default PBKDF2 iterations for Django 4.2.Carlton Gibson
2022-05-17Added stub release notes for 4.2.Carlton Gibson