summaryrefslogtreecommitdiff
path: root/tests/utils_tests
AgeCommit message (Collapse)Author
2019-07-31[1.11.x] Fixed CVE-2019-14235 -- Fixed potential memory exhaustion in ↵Florian Apolloner
django.utils.encoding.uri_to_iri(). Thanks to Guido Vranken for initial report.
2019-07-29[1.11.x] Fixed CVE-2019-14233 -- Prevented excessive HTMLParser recursion in ↵Florian Apolloner
strip_tags() when handling incomplete HTML entities. Thanks to Guido Vranken for initial report.
2019-07-29[1.11.X] Fixed CVE-2019-14232 -- Adjusted regex to avoid backtracking issues ↵Florian Apolloner
when truncating HTML. Thanks to Guido Vranken for initial report.
2019-02-11[1.11.x] Fixed CVE-2019-6975 -- Fixed memory exhaustion in ↵Carlton Gibson
utils.numberformat.format(). Thanks Sjoerd Job Postmus for the report and initial patch. Thanks Michael Manfre, Tim Graham, and Florian Apolloner for review. Backport of 402c0caa851e265410fbcaa55318f22d2bf22ee2 from master.
2018-07-25[1.11.x] Fixed CVE-2018-14574 -- Fixed open redirect possibility in ↵Andreas Hug
CommonMiddleware.
2018-02-27[1.11.x] Fixed CVE-2018-7537 -- Fixed catastrophic backtracking in ↵Tim Graham
django.utils.text.Truncator. Thanks James Davis for suggesting the fix.
2018-02-27[1.11.x] Fixed CVE-2018-7536 -- Fixed catastrophic backtracking in urlize ↵Tim Graham
and urlizetrunc template filters. Thanks Florian Apolloner for assisting with the patch.
2017-08-31[1.11.x] Fixed #28487 -- Fixed runserver crash with non-Unicode system ↵Mark Rogaski
encodings on Python 2 + Windows.
2017-07-15[1.11.x] Refs #28174 -- Fixed autoreload test crash on Python 2/non-ASCII path.Tim Graham
2017-07-13[1.11.x] Fixed #28174 -- Fixed crash in runserver's autoreload with Python 2 ↵Mark Rogaski
on Windows with non-str environment variables.
2017-07-12[1.11.x] Fixed #28389 -- Fixed pickling of LazyObject on Python 2 when ↵Sergey Fedoseev
wrapped object doesn't have __reduce__(). Partial revert of 35355a4ffedb2aeed52d5fe3034380ffc6a438db.
2017-05-10[1.11.x] Fixed #28142 -- Fixed is_safe_url() crash on invalid IPv6 URLs.UmanShahzad
Backport of 856072dd4a3e479aa09b0ab6b498ff599ca2a809 from master
2017-04-04[1.11.x] Fixed #27912, CVE-2017-7233 -- Fixed is_safe_url() with numeric URLs.Tim Graham
This is a security fix.
2017-04-04[1.11.x] Updated tests after French translation updateClaude Paroz
Backport of 389c3ffc04eaa6186ae0bad523995e8fcf7620df from master.
2017-03-04[1.11.x] Fixed #27900 -- Made escapejs escape backticks for use in ES6 ↵Tim Graham
template literals. Backport of 6ae1b04fb584db0fdb22b8e287784c4ed3ac62ac from master
2017-01-14Fixed #27699 -- Added negative timedelta support to parse_duration()Jinank Jain
2017-01-02Refs #27637 -- Fixed timesince, timeuntil on New Year's Eve in a leap year.vinay karanam
2016-12-28Fixed #27628 -- Fixed unarchiving a file without permission data.Anton Samarchyan
2016-12-27Fixed #27648 -- Deprecated (iLmsu) regex groups in url() patterns.Tim Graham
2016-12-27Fixed #27637 -- Fixed timesince, timeuntil in leap year edge case.Mariusz Felisiak
2016-12-22Added tests for django.utils.autoreload.Phil Tysoe
2016-12-09Fixed #27583 -- Fixed MultiValueDict.getlist() crash when values for key is ↵Mariusz Felisiak
None. Restored the behavior before 727d7ce6cba21363470aaefb2dc5353017531be3.
2016-12-07Fixed #27579 -- Added aliases for Python 3's assertion names in SimpleTestCase.Tim Graham
2016-12-06Fixed #26494 -- Made Archive.extract() preserve file permissions.Anton Samarchyan
2016-12-01Refs #27546 -- Tested some __repr__() methods.Keda87
2016-11-29Fixed #27555 -- Removed django.utils.functional.lazy_property.Adam Chainz
2016-11-14Fixed #27463 -- Fixed E741 flake8 warnings.Ramin Farajpour Cami
2016-11-14Fixed E305 flake8 warnings.Ramin Farajpour Cami
2016-11-10Refs #27392 -- Removed "Tests that", "Ensures that", etc. from test docstrings.za
2016-11-07Fixed #27138 -- Restored pre-Python 3.6 behavior of localtime() and ↵Joachim Jablon
make_naive() on Python 3.6. Reverted test changes in a7a7ecd2b026c61a39a46d2d7eced0e06a92c970 and e43ea36b7681e43ea99505a2cf7550d4d36016b3 (refs #27025).
2016-11-01Completed django.utils.timezone test coverage.Tim Graham
2016-10-27Fixed #27327 -- Simplified time zone handling by requiring pytz.Tim Graham
2016-10-04Fixed #27309 -- Added CallableBool.__hash__().Reto Aebersold
2016-09-17Refs #27025 -- Fixed a timezone test for Python 3.6.Tim Graham
Reflects behavior changes in PEP 495 (Local Time Disambiguation).
2016-09-17Refs #27025 -- Fixed "invalid escape sequence" warnings in Python 3.6.Tim Graham
http://bugs.python.org/issue27364
2016-09-16Fixed #27198 -- Made MultiValueDict.getlist() return a new list to prevent ↵Jani Tiainen
mutation.
2016-09-10Fixed #27083 -- Added support for weak ETags.Kevin Christopher Henry
2016-09-07Refs #26956 -- Allowed is_safe_url() to validate against multiple hostsJon Dufresne
2016-08-31Fixed #25181 -- Added localdate() function to get date in a different time zone.Jon Dufresne
Thanks Konrad Świat for the original patch.
2016-08-31Fixed #27154 -- Allowed comparing CallableBool with bitwise or.Olexander Yermakov
Thanks Tim for the review.
2016-08-24Fixed #26866 -- Added format_lazy functionMattias Loverot
Added format_lazy function to django.utils.text module. Useful when dealing with relative complex lazy string concatenations (e.g. in urls.py when translating urls in regular expressions).
2016-08-19Fixed #26902 -- Allowed is_safe_url() to require an https URL.Przemysław Suliga
Thanks Andrew Nester, Berker Peksag, and Tim Graham for reviews.
2016-08-16Replaced 'raise SkipTest' with self.skipTest() in a few tests.Tim Graham
2016-08-09Refs #27025 -- Fixed a couple timezone tests for Python 3.6.Tim Graham
Reflects behavior changes in PEP 495 (Local Time Disambiguation).
2016-08-02Fixed #26988 -- Improved/clarified User.is_authenticated/anonymous ↵Tim Graham
compatibility. Thanks marktranchant for the report and review.
2016-07-21Made miscellaneous code cleanupsDmitry Dygalo
2016-07-14Fixed #26656 -- Added duration (timedelta) support to DjangoJSONEncoder.Will Hardy
2016-06-16Fixed #26747 -- Used more specific assertions in the Django test suite.Jon Dufresne
2016-06-14Removed usage of a few deprecated unittest assertions.Ville Skyttä
2016-06-07Fixed #10107 -- Allowed using mark_safe() as a decorator.Scott Vitale
Thanks ArcTanSusan for the initial patch.
generated by cgit v1.3 (git 2.53.0) at 2026-05-01 23:25:35 +0000