summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2022-02-01[4.0.x] Bumped version for 4.0.2 release.4.0.2Mariusz Felisiak
2022-02-01[4.0.x] Fixed CVE-2022-23833 -- Fixed DoS possiblity in file uploads.Mariusz Felisiak
Thanks Alan Ryan for the report and initial patch. Backport of fc18f36c4ab94399366ca2f2007b3692559a6f23 from main.
2022-02-01[4.0.x] Fixed CVE-2022-22818 -- Fixed possible XSS via {% debug %} template tag.Markus Holtermann
Thanks Keryn Knight for the report. Backport of 394517f07886495efcf79f95c7ee402a9437bd68 from main. Co-authored-by: Adam Johnson <me@adamj.eu>
2022-02-01[4.0.x] Fixed #33480 -- Fixed makemigrations crash when renaming field of ↵Kirill Safronov
renamed model. Regression in aa4acc164d1247c0de515c959f7b09648b57dc42. Backport of 97a72744681d0993b50dee952cf32cdf9650ad9f from main
2022-01-31[4.0.x] Fixed #33468 -- Fixed QuerySet.aggregate() after annotate() crash on ↵Mariusz Felisiak
aggregates with default. Thanks Adam Johnson for the report. Backport of 71e7c8e73712419626f1c2b6ec036e8559a2d667 from main
2022-01-29[4.0.x] Updated translations from Transifex.Claude Paroz
Updated Bulgarian, Czech, German, Uzbek, and Vietnamese translations.
2022-01-28[4.0.x] Fixed #33459 -- Clarified index type in full text search docs.Thomas Aglassinger
Backport of 3a9b8b25d48c5768633e73edc5ddca20c3fd716c from main
2022-01-27[4.0.x] Fixed #33462 -- Fixed migration crash when altering type of primary ↵Mariusz Felisiak
key with MTI and foreign key. This prevents duplicated operations when altering type of primary key with MTI and foreign key. Previously, a foreign key to the base model was added twice, once directly and once by the inheritance model. Thanks bcail for the report. Regression in 325d7710ce9f6155bb55610ad6b4580d31263557. Backport of e972620ada4f9ed7bc57f28e133e85c85b0a7b20 from main
2022-01-26[4.0.x] Fixed #33048 -- Doc'd that DEBUG static files requests don't use ↵Kaushik Chintam
middleware chain. Backport of 1625a8c8eba0b00ebdd1d7a8ba697b2729ec40ed from main
2022-01-26[4.0.x] Fixed #33407 -- Fixed .radiolist admin CSS.Carlton Gibson
Regression in 5942ab5eb165ee2e759174e297148a40dd855920. Backport of 85f2a9fb0f0973930abc84a725bc30703aa3d98b from main
2022-01-25[4.0.x] Added stub release notes and release date for 4.0.2, 3.2.12, and 2.2.27.Mariusz Felisiak
Backport of eeca9342381c8583be16f18942774e785ab7e527 from main
2022-01-21[4.0.x] Fixed #33449 -- Fixed makemigrations crash on models without ↵Fabian Büchler
Meta.order_with_respect_to but with _order field. Regression in aa4acc164d1247c0de515c959f7b09648b57dc42. Backport of eeff1787b0aa23016e4844c0f537d5093a95a356 from main
2022-01-20[4.0.x] Improved wording in running Django’s test suite in contributing ↵Tilak
tutorial. Backport of 2c76c27a951ee76c6f763a05c7e119305a21c78d from main
2022-01-17[4.0.x] Fixed #33443 -- Clarified when PasswordResetView sends an email.Brad Solomon
Backport of b55ebe32417e0884b6b8b3e1bc0379033aa221af from main
2022-01-12[4.0.x] Fixed typo in docs/ref/contrib/admin/index.txt.Scott Pashley
Backport of 367d6920ece44639e54650d9a98f8c24e10f7229 from main
2022-01-12[4.0.x] Fixed #33432 -- Fixed typo in docs/howto/outputting-csv.txt.Zeilentaucher
Backport of 658dc7045aaba548f908bb26a370eb89fb393bca from main
2022-01-11[4.0.x] Fixed typo in docs/ref/contrib/admin/index.txt.Victor Peralta
Backport of f1905db6c0004a2b6c8b69c55a1f5f9da58ce2eb from main
2022-01-10[4.0.x] Fixed #33426 -- Fixed ResolverMatch.__repr_() for class-based views.Keryn Knight
Regression in 7c08f26bf0439c1ed593b51b51ad847f7e262bc1. Backport of f4b06a3cc1e54888ff86f36a1f9a3ddf21292314 from main
2022-01-10[4.0.x] Corrected signatures of some functions in docs.Mariusz Felisiak
Backport of 178109c1734ccc16386c3e3cbae1465c7a1b8ed8 from main
2022-01-10[4.0.x] Corrected directive for signals in django.contrib.auth docs.Mariusz Felisiak
Backport of b0ccf74549fe138c040798e0e99fc0291a7e03ed from main
2022-01-08[4.0.x] Fixed #33425 -- Fixed view name for CBVs on technical 404 debug page.Keryn Knight
Regression in 0c0b87725bbcffca3bc3a7a2c649995695a5ae3b. Backport of 2a66c102d9c674fadab252a28d8def32a8b626ec from main
2022-01-07[4.0.x] Fixed #33419 -- Restored marking forms.Field.help_text as HTML safe.David
Regression in 456466d932830b096d39806e291fe23ec5ed38d5. Thanks Matt Westcott for the report. Backport of 4c60c3edff4312303e1021fca47ed52c2152d285 from main
2022-01-07[4.0.x] Fixed #33410 -- Fixed recursive capturing of callbacks by ↵Petter Friberg
TestCase.captureOnCommitCallbacks(). Regression in d89f976bddb49fb168334960acc8979c3de991fa. Backport of bc174e6ea0ce676c5a7f467bda9739e6ef6b6186 from main
2022-01-05[4.0.x] Removed unused comment directive in CBV topic docs.David
Backport of 973fa566521037ac140dcece73fceae50ee522f1 from main
2022-01-05[4.0.x] Fixed malformed attribute directives in docs.David
Backport of cc8e771c643b4aed9f1d0b8bfcc5b4a8604385b7 from main
2022-01-04[4.0.x] Added CVE-2021-45115, CVE-2021-45116, and CVE-2021-45452 to security ↵Carlton Gibson
archive. Backport of 63869ab1f191ab5781cde8b813b838300455f6d6 from main
2022-01-04[4.0.x] Added stub release notes for Django 4.0.2.Carlton Gibson
Backport of f38c66b55504dfe0b7ca15b0b4ced9430abc7eaa from main
2022-01-04[4.0.x] Post-release version bump.Carlton Gibson
2022-01-04[4.0.x] Bumped version for 4.0.1 release.4.0.1Carlton Gibson
2022-01-04[4.0.x] Fixed CVE-2021-45452 -- Fixed potential path traversal in storage ↵Florian Apolloner
subsystem. Thanks to Dennis Brinkrolf for the report.
2022-01-04[4.0.x] Fixed CVE-2021-45116 -- Fixed potential information disclosure in ↵Florian Apolloner
dictsort template filter. Thanks to Dennis Brinkrolf for the report. Co-authored-by: Adam Johnson <me@adamj.eu>
2022-01-04[4.0.x] Fixed CVE-2021-45115 -- Prevented DoS vector in ↵Florian Apolloner
UserAttributeSimilarityValidator. Thanks Chris Bailey for the report. Co-authored-by: Adam Johnson <me@adamj.eu>
2022-01-04[4.0.x] Avoided suggestion of plain text database password in sessions topic.Luke Plant
Backport of ccafad2e429468c518c80fb178f9e7a3f06e78e1 from main
2021-12-31[4.0.x] Fixed #33391 -- Clarified Aggregate.empty_result_set_value docs.Mariusz Felisiak
Backport of 4400d8568ad5695c46e8de45635a82a27a26b871 from main
2021-12-30[4.0.x] Improved @display(empty_value) example in ↵mangelozzi
ModelAdmin.empty_value_display docs. Backport of eb901681ab58c008f7bbbe555e5f43f8e0893bd3 from main
2021-12-30[4.0.x] Fixed #27936 -- Rewrote spanning multi-valued relationships docs.Jacob Walls
Backport of 6174814dbe04fb6668aa212a6cdbca765a8b0522 from main
2021-12-30[4.0.x] Added default values to Entry's fields in making queries docs.Mariusz Felisiak
This makes it easier to create a data in examples. Backport of 1283458baae482c2bbb22c842b1db6c832c953f3 from main
2021-12-28[4.0.x] Updated example of YAML serialization format in docs.Sergey Fursov
Backport of feeb0685c62a793c55a058584ba1de45e74f80f7 from main
2021-12-28[4.0.x] Added stub release notes for 4.0.1, 3.2.11, and 2.2.26 releases.Carlton Gibson
Backport of b13d920b7b56d3e088e35311f5ee54f25d2779af from main.
2021-12-22[4.0.x] Refs #32355 -- Bumped required psycopg2 version to 2.8.4.Mariusz Felisiak
psycopg2 2.8.4 is the first release to support Python 3.8. Backport of ca04659b4b3f042c1bc7e557c25ed91e3c56c745 from main
2021-12-22[4.0.x] Refs #31026 -- Updated TemplatesSetting docs to refer to forms.David Smith
Backport of 78f062f63e7dea09c219fd1310d43950817f4c78 from main
2021-12-22[4.0.x] Added TemplatesSetting to list of built-in renderers in ↵Adam Johnson
FORM_RENDERER docs. Backport of fde425051c31b240e8eca48a8eb54daa6d372c9f from main
2021-12-21[4.0.x] Fixed #32600 -- Fixed Geometry collections and Polygon segmentation ↵Brenton Partridge
fault on macOS ARM64. Backport of 19fb838803f63eef0726a370050443b693f109be from main
2021-12-17[4.0.x] Fixed #33366 -- Fixed case handling with swappable setting detection ↵Simon Charette
in migrations autodetector. The migration framework uniquely identifies models by case insensitive labels composed of their app label and model names and so does the app registry in most of its methods (e.g. AppConfig.get_model) but it wasn't the case for get_swappable_settings_name() until this change. This likely slipped under the radar for so long and only regressed in b9df2b74b98b4d63933e8061d3cfc1f6f39eb747 because prior to the changes related to the usage of model states instead of rendered models in the auto-detector the exact value settings value was never going through a case folding hoop. Thanks Andrew Chen Wang for the report and Keryn Knight for the investigation. Backport of 43289707809c814a70f0db38ca4f82f35f43dbfd from main
2021-12-16[4.0.x] Fixed #33350 -- Reallowed using cache decorators with duck-typed ↵Mariusz Felisiak
HttpRequest. Regression in 3fd82a62415e748002435e7bad06b5017507777c. Thanks Terence Honles for the report. Backport of 40165eecc40f9e223702a41a0cb0958515bb1f82 from main
2021-12-15[4.0.x] Refs #33365, Refs #30530 -- Doc'd re_path() behavior change in ↵Mariusz Felisiak
Django 2.2.25, 3.1.14, and 3.2.10. Follow up to d4dcd5b9dd9e462fec8220e33e3e6c822b7e88a6. Backport of 5de12a369a7b2231e668e0460c551c504718dbf6 from main
2021-12-14[4.0.x] Fixed #33361 -- Fixed Redis cache backend crash on booleans.Jeremy Lainé
Backport of 2f33217ea2cad688040dd6044cdda946c62e5b65 from main
2021-12-13[4.0.x] Fixed #33338 -- Doc'd that never_cache() decorator set Expires header.mgaligniana
Backport of 669dcefc04837c35fc2ec5ce906d84397005965d from main
2021-12-13[4.0.x] Corrected example in models.DecimalField docs.Beomsoo Kim
Backport of 7e4a9a9f696574a18f5c98f34d5a88e254b2d394 from main
2021-12-13[4.0.x] Updated link to Microsoft SQL Server backend.Wayne Lambert
Backport of 8a8c8797e81b338f3c93a5a4e2483916e68e4a54 from main
generated by cgit v1.3 (git 2.53.0) at 2026-05-01 20:55:11 +0000