Django 1.5 is finally insecure? - McMap

About

Django 1.5 is finally insecure?

Asked 16/9, 2014 at 0:57 Answered 16/9, 2014 at 2:30

Solved python django security versioning django-1.5

L

1

8

I am django user and using 1.5 version and almost finish developing application. But I finally realized that whenever I read the documents of django 1.5 there is a banner on the top that 1.5 is insecure version.. Should I have to move to higher version?

Lucknow answered 16/9, 2014 at 0:57 Comment(1)

You don't have to upgrade but 1.6 brings new transactions and 1.7 brings an improved, built-in South so if only you can upgrade (time, costs, etc.), don't hesitate to do it. – Kyungkyushu 16/9, 2014 at 22:5

E

10

The message is there because of the Django's release process philosophy:

The rule of thumb is that fixes will be backported to the last major release for bugs that would have prevented a release in the first place (release blockers).

Security fixes and data loss bugs will be applied to the current master, the last two major releases, and the current LTS release.

Since Django 1.7 is now got finally stable, current and new security problems would be fixed in 1.6, 1.7 and the latest LTS release 1.4. This is why 1.5 is considered "insecure".

There is also a related detailed article being posted this week:

Django Versioning

Echinate answered 16/9, 2014 at 2:30 Comment(0)

Recommended topics

#Godot #Unity #Godot 4.X #Mongodb

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

© 2022 - 2024 — McMap. All rights reserved.