mirror of
https://github.com/django/django.git
synced 2025-01-24 00:59:20 +00:00
d7bc37d611
Thanks Peter Schmidt for the report and the initial patch. Thanks to Oktay Sancak for writing the original failing test and Alvin Savoy for supporting contributing back to the community.
27 lines
777 B
Plaintext
27 lines
777 B
Plaintext
==========================
|
|
Django 1.7.3 release notes
|
|
==========================
|
|
|
|
*Under development*
|
|
|
|
Django 1.7.3 fixes several bugs in 1.7.2.
|
|
|
|
|
|
|
|
Bugfixes
|
|
========
|
|
|
|
* The default iteration count for the PBKDF2 password hasher has been
|
|
increased by 25%. This part of the normal major release process was
|
|
inadvertently omitted in 1.7. This backwards compatible change will not
|
|
affect users who have subclassed
|
|
``django.contrib.auth.hashers.PBKDF2PasswordHasher`` to change the
|
|
default value.
|
|
|
|
* Fixed a crash in the CSRF middleware when handling non-ASCII referer header
|
|
(:ticket:`23815`).
|
|
|
|
* Fixed a crash in the ``django.contrib.auth.redirect_to_login`` view when
|
|
passing a :func:`~django.core.urlresolvers.reverse_lazy` result on Python 3
|
|
(:ticket:`24097`).
|