Permalink
Commits on Nov 6, 2016
  1. Fixed #26812 -- Fixed APPEND_SLASH on a URL including querystring wit…

    zw3n committed with timgraham Nov 6, 2016
    …h a trailing slash.
  2. Added Emmanuelle Delescolle to AUTHORS.

    mxsasha committed Nov 6, 2016
    (Fixed #23604 in 2014 and was not added before.)
  3. Fixed #27372 -- Fixed introspection of SQLite foreign keys with space…

    frgtn committed with timgraham Nov 5, 2016
    …s in DDL.
    
    Thanks samuller for the report and initial patch.
Commits on Nov 5, 2016
  1. Fixed #27441 -- Improved SQL for 'DROP COLUMN' on MySQL

    adamchainz committed with charettes Nov 5, 2016
    'CASCADE' is an undocumented no-op in MySQL, so to avoid confusion Django no longer outputs it.
Commits on Nov 4, 2016
Commits on Nov 3, 2016
Commits on Nov 1, 2016
  1. Fixed CVE-2016-9014 -- Validated Host header when DEBUG=True.

    timgraham committed Oct 17, 2016
    This is a security fix.
  2. Fixed CVE-2016-9013 -- Generated a random database user password when…

    intgr committed with timgraham Oct 24, 2016
    … running tests on Oracle.
    
    This is a security fix.
Commits on Oct 31, 2016
  1. Fixed #27063 -- Prevented i18n_patterns() from using too much of the …

    urbaniak committed with timgraham Oct 28, 2016
    …URL as the language.
  2. Updated by bio.

    holvianssi committed with timgraham Oct 31, 2016
Commits on Oct 29, 2016
  1. Fixed #27382 -- Doc'd that ugettext_lazy() should be converted to tex…

    medmunds committed with timgraham Oct 25, 2016
    …t for non-Django code.
  2. Fixed #27188 -- Allowed using unique=True with FileField.

    mscott250 committed with timgraham Sep 20, 2016
    Thanks Tim Graham for the initial patch.