Opened 6 years ago

Closed 6 years ago

Last modified 6 years ago

#15245 closed (fixed)

Django 1.2.5 release notes do not reflect changes listed in weblog post regarding security release

Reported by: mail@… Owned by: nobody
Component: Documentation Version: 1.2
Severity: Keywords:
Cc: Triage Stage: Accepted
Has patch: no Needs documentation: no
Needs tests: no Patch needs improvement: no
Easy pickings: UI/UX:


The security changes discussed on the Django weblog at:
are not reflected in the Django 1.2.5 release notes in the tarball or website at:

Additionally these release notes mention further backwards incompatible changes which are not mentioned on the weblog posting.

Change History (3)

comment:1 Changed 6 years ago by Russell Keith-Magee

Component: UncategorizedDocumentation
Needs documentation: unset
Needs tests: unset
Patch needs improvement: unset
Triage Stage: UnreviewedAccepted

There's not much we can do post-facto about the weblog entry; however, the release notes should be updated to include details about the issues with the security release.

comment:2 Changed 6 years ago by Russell Keith-Magee

Resolution: fixed
Status: newclosed

In [15478]:

Fixed #15245 -- Added note about the CSRF AJAX exception to the 1.2.5 release notes. Thanks to Matt Austin for the report.

comment:3 Changed 6 years ago by Russell Keith-Magee

In [15480]:

(The changeset message doesn't reference this ticket)

Note: See TracTickets for help on using tickets.
Back to Top