From 486b6f398bba109ba68b2f29c604e2cf13099aab Mon Sep 17 00:00:00 2001 From: James Bennett Date: Mon, 21 Apr 2014 17:51:51 -0500 Subject: [1.5.x] Update for 1.5.6 security release. --- docs/conf.py | 2 +- docs/releases/security.txt | 17 +++++++++++++++++ 2 files changed, 18 insertions(+), 1 deletion(-) (limited to 'docs') diff --git a/docs/conf.py b/docs/conf.py index 01e660aef4..1ca303a42a 100644 --- a/docs/conf.py +++ b/docs/conf.py @@ -52,7 +52,7 @@ copyright = 'Django Software Foundation and contributors' # built documents. # # The short X.Y version. -version = '1.5.5' +version = '1.5.6' # The full version, including alpha/beta/rc tags. release = version # The next version to be released diff --git a/docs/releases/security.txt b/docs/releases/security.txt index 474eeee26d..3cc7e82628 100644 --- a/docs/releases/security.txt +++ b/docs/releases/security.txt @@ -448,3 +448,20 @@ Versions affected * Django 1.4 `(patch `__ and `Python compatibility fix) `__ * Django 1.5 `(patch) `__ + + +April 21, 2014 - CVE-2014-2014-0472 +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +`CVE-2014-0472 `_: Unexpected code execution using ``reverse()``. `Full description `_ + +Versions affected +----------------- + +* Django 1.4 `(patch `_) + +* Django 1.5 `(patch `_) + +* Django 1.6 `(patch `_) + +* Django 1.7 `(patch `_) -- cgit v1.3