0
0
mirror of https://github.com/django/django.git synced 2024-11-29 14:46:18 +01:00
django/docs/releases
Mariusz Felisiak 05413afa8c Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archive.extract().
Thanks Florian Apolloner, Shai Berger, and Simon Charette for reviews.

Thanks Wang Baohua for the report.
2021-02-01 09:07:36 +01:00
..
0.95.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
0.96.txt
1.0-porting-guide.txt Refs #30573 -- Rephrased "Of Course" and "Obvious(ly)" in documentation and comments. 2020-05-04 12:10:47 +02:00
1.0.1.txt
1.0.2.txt
1.0.txt Refs #25778 -- Updated some links to HTTPS and new locations. 2020-01-29 09:34:37 +01:00
1.1.2.txt
1.1.3.txt Refs #31670 -- Removed whitelist/blacklist terminology in docs and comments. 2020-06-17 13:15:56 +02:00
1.1.4.txt
1.1.txt
1.2.1.txt Used 🎫 role in all tickets links. 2019-11-26 14:02:24 +01:00
1.2.2.txt
1.2.3.txt
1.2.4.txt Refs #31670 -- Removed whitelist/blacklist terminology in docs and comments. 2020-06-17 13:15:56 +02:00
1.2.5.txt
1.2.6.txt
1.2.7.txt
1.2.txt Used :envvar: role and .. envvar:: directive in various docs. 2020-05-13 09:14:40 +02:00
1.3.1.txt
1.3.2.txt
1.3.3.txt
1.3.4.txt
1.3.5.txt
1.3.6.txt Capitalized Unicode in docs, strings, and comments. 2020-04-20 12:10:33 +02:00
1.3.7.txt
1.3.txt Fixed #31696 -- Updated OWASP links in docs. 2020-06-15 09:44:08 +02:00
1.4.1.txt
1.4.2.txt
1.4.3.txt
1.4.4.txt Capitalized Unicode in docs, strings, and comments. 2020-04-20 12:10:33 +02:00
1.4.5.txt
1.4.6.txt
1.4.7.txt
1.4.8.txt
1.4.9.txt
1.4.10.txt
1.4.11.txt
1.4.12.txt
1.4.13.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
1.4.14.txt
1.4.15.txt
1.4.16.txt
1.4.17.txt
1.4.18.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
1.4.19.txt
1.4.20.txt
1.4.21.txt
1.4.22.txt
1.4.txt Refs #28622 -- Removed settings.PASSWORD_RESET_TIMEOUT_DAYS per deprecation timeline. 2021-01-14 17:50:04 +01:00
1.5.1.txt Used 🎫 role in all tickets links. 2019-11-26 14:02:24 +01:00
1.5.2.txt Capitalized Unicode in docs, strings, and comments. 2020-04-20 12:10:33 +02:00
1.5.3.txt Changed docs and a code comment to use gender-neutral pronouns. 2020-11-13 22:26:30 +01:00
1.5.4.txt
1.5.5.txt
1.5.6.txt
1.5.7.txt
1.5.8.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
1.5.9.txt
1.5.10.txt
1.5.11.txt
1.5.12.txt
1.5.txt Used :mimetype: role in various docs. 2020-05-13 09:14:04 +02:00
1.6.1.txt Capitalized Unicode in docs, strings, and comments. 2020-04-20 12:10:33 +02:00
1.6.2.txt
1.6.3.txt
1.6.4.txt
1.6.5.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
1.6.6.txt Capitalized Unicode in docs, strings, and comments. 2020-04-20 12:10:33 +02:00
1.6.7.txt
1.6.8.txt
1.6.9.txt
1.6.10.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
1.6.11.txt
1.6.txt Refs #28622 -- Removed settings.PASSWORD_RESET_TIMEOUT_DAYS per deprecation timeline. 2021-01-14 17:50:04 +01:00
1.7.1.txt Capitalized Unicode in docs, strings, and comments. 2020-04-20 12:10:33 +02:00
1.7.2.txt Capitalized Unicode in docs, strings, and comments. 2020-04-20 12:10:33 +02:00
1.7.3.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
1.7.4.txt
1.7.5.txt
1.7.6.txt
1.7.7.txt
1.7.8.txt
1.7.9.txt
1.7.10.txt
1.7.11.txt
1.7.txt Refs #15902 -- Stopped set_language() storing user's language in the session. 2021-01-14 17:50:04 +01:00
1.8.1.txt Fixed #31534 -- Deprecated django.conf.urls.url(). 2020-05-05 07:34:34 +02:00
1.8.2.txt
1.8.3.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
1.8.4.txt
1.8.5.txt
1.8.6.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
1.8.7.txt
1.8.8.txt
1.8.9.txt
1.8.10.txt
1.8.11.txt
1.8.12.txt
1.8.13.txt
1.8.14.txt
1.8.15.txt
1.8.16.txt
1.8.17.txt
1.8.18.txt
1.8.19.txt
1.8.txt Used :pep: role in various docs. 2020-05-13 09:14:04 +02:00
1.9.1.txt
1.9.2.txt
1.9.3.txt
1.9.4.txt
1.9.5.txt
1.9.6.txt
1.9.7.txt
1.9.8.txt
1.9.9.txt
1.9.10.txt
1.9.11.txt
1.9.12.txt
1.9.13.txt
1.9.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
1.10.1.txt
1.10.2.txt
1.10.3.txt
1.10.4.txt
1.10.5.txt
1.10.6.txt
1.10.7.txt
1.10.8.txt
1.10.txt Refs #30573 -- Rephrased "Of Course" and "Obvious(ly)" in documentation and comments. 2020-05-04 12:10:47 +02:00
1.11.1.txt Corrected docs spelling of PgBouncer. 2020-04-01 14:55:11 +02:00
1.11.2.txt
1.11.3.txt
1.11.4.txt
1.11.5.txt
1.11.6.txt
1.11.7.txt
1.11.8.txt
1.11.9.txt
1.11.10.txt
1.11.11.txt
1.11.12.txt
1.11.13.txt
1.11.14.txt
1.11.15.txt
1.11.16.txt
1.11.17.txt
1.11.18.txt
1.11.19.txt
1.11.20.txt
1.11.21.txt
1.11.22.txt
1.11.23.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
1.11.24.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
1.11.25.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
1.11.26.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
1.11.27.txt Fixed CVE-2019-19844 -- Used verified user email for password reset requests. 2019-12-18 09:11:39 +01:00
1.11.28.txt Fixed CVE-2020-7471 -- Properly escaped StringAgg(delimiter) parameter. 2020-02-03 08:49:13 +01:00
1.11.29.txt Fixed typo in docs/releases/1.11.29.txt. 2020-03-04 10:46:43 +01:00
1.11.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.0.1.txt
2.0.2.txt
2.0.3.txt
2.0.4.txt Prevented (and corrected) single backtick usage in docs. 2020-04-01 14:55:11 +02:00
2.0.5.txt
2.0.6.txt
2.0.7.txt
2.0.8.txt
2.0.9.txt
2.0.10.txt
2.0.11.txt
2.0.12.txt
2.0.13.txt
2.0.txt Capitalized Unicode in docs, strings, and comments. 2020-04-20 12:10:33 +02:00
2.1.1.txt
2.1.2.txt
2.1.3.txt
2.1.4.txt
2.1.5.txt
2.1.6.txt
2.1.7.txt
2.1.8.txt
2.1.9.txt
2.1.10.txt
2.1.11.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.1.12.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.1.13.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.1.14.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.1.15.txt Preferred usage of among/while to amongst/whilst. 2020-06-03 21:02:48 +02:00
2.1.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.2.1.txt Used :envvar: role and .. envvar:: directive in various docs. 2020-05-13 09:14:40 +02:00
2.2.2.txt
2.2.3.txt
2.2.4.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.2.5.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.2.6.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.2.7.txt Refs #12990 -- Removed django.contrib.postgres.fields.JSONField per deprecation timeline. 2021-01-14 17:50:04 +01:00
2.2.8.txt Preferred usage of among/while to amongst/whilst. 2020-06-03 21:02:48 +02:00
2.2.9.txt Fixed CVE-2019-19844 -- Used verified user email for password reset requests. 2019-12-18 09:11:39 +01:00
2.2.10.txt Fixed CVE-2020-7471 -- Properly escaped StringAgg(delimiter) parameter. 2020-02-03 08:49:13 +01:00
2.2.11.txt Fixed CVE-2020-9402 -- Properly escaped tolerance parameter in GIS functions and aggregates on Oracle. 2020-03-04 09:04:50 +01:00
2.2.12.txt Added release dates for 2.1.12 and 3.0.5. 2020-04-01 09:14:56 +02:00
2.2.13.txt Fixed CVE-2020-13254 -- Enforced cache key validation in memcached backends. 2020-06-03 09:24:26 +02:00
2.2.14.txt Added release date for 2.2.14 and 3.0.8. 2020-07-01 06:16:32 +02:00
2.2.15.txt Added release date for 2.2.15 and 3.0.9. 2020-08-03 08:52:28 +02:00
2.2.16.txt Added release date for 3.1.1, 3.0.10, and 2.2.16. 2020-09-01 09:56:42 +02:00
2.2.17.txt Set release date for 3.1.3, 3.0.11, and 2.2.17. 2020-11-02 08:35:24 +01:00
2.2.18.txt Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archive.extract(). 2021-02-01 09:07:36 +01:00
2.2.txt Refs #31040 -- Doc'd Python 3.9 compatibility. 2020-10-13 08:35:01 +02:00
3.0.1.txt Used :envvar: role and .. envvar:: directive in various docs. 2020-05-13 09:14:40 +02:00
3.0.2.txt Added release date for 3.0.2. 2020-01-02 07:55:53 +01:00
3.0.3.txt Added release date for 3.0.3. 2020-02-03 08:52:16 +01:00
3.0.4.txt Fixed CVE-2020-9402 -- Properly escaped tolerance parameter in GIS functions and aggregates on Oracle. 2020-03-04 09:04:50 +01:00
3.0.5.txt Added release dates for 2.1.12 and 3.0.5. 2020-04-01 09:14:56 +02:00
3.0.6.txt Fixed typo in docs/releases/3.0.6.txt. 2020-05-04 07:42:25 +02:00
3.0.7.txt Fixed CVE-2020-13254 -- Enforced cache key validation in memcached backends. 2020-06-03 09:24:26 +02:00
3.0.8.txt Added release date for 2.2.14 and 3.0.8. 2020-07-01 06:16:32 +02:00
3.0.9.txt Added release date for 2.2.15 and 3.0.9. 2020-08-03 08:52:28 +02:00
3.0.10.txt Added release date for 3.1.1, 3.0.10, and 2.2.16. 2020-09-01 09:56:42 +02:00
3.0.11.txt Set release date for 3.1.3, 3.0.11, and 2.2.17. 2020-11-02 08:35:24 +01:00
3.0.12.txt Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archive.extract(). 2021-02-01 09:07:36 +01:00
3.0.txt Refs #31040 -- Doc'd Python 3.9 compatibility. 2020-10-13 08:35:01 +02:00
3.1.1.txt Refs #31956 -- Doc'd consequences of disabling psycopg2's JSONB typecaster. 2020-09-10 11:00:13 +02:00
3.1.2.txt Added release date for 3.1.2. 2020-10-01 07:22:28 +02:00
3.1.3.txt Set release date for 3.1.3, 3.0.11, and 2.2.17. 2020-11-02 08:35:24 +01:00
3.1.4.txt Added release date for 3.1.4. 2020-12-01 06:24:16 +01:00
3.1.5.txt Added release date for 3.1.5. 2021-01-04 08:31:51 +01:00
3.1.6.txt Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archive.extract(). 2021-02-01 09:07:36 +01:00
3.1.txt Fixed #32348, Refs #29087 -- Corrected tutorial for updated deleting inlines UI. 2021-01-27 08:44:36 +01:00
3.2.txt Refs #32365 -- Allowed use of non-pytz timezone implementations. 2021-01-19 11:59:37 +01:00
4.0.txt Fixed #32347 -- Made ModelChoiceField include the value in ValidationError for invalid_choice. 2021-01-26 09:31:53 +01:00
index.txt Fixed CVE-2021-3281 -- Fixed potential directory-traversal via archive.extract(). 2021-02-01 09:07:36 +01:00
security.txt Added CVE-2020-24583 & CVE-2020-24584 to security archive. 2020-09-01 11:32:57 +02:00