release_2.3
1. v2.3.6 (2025-11-07)
1.1 New Features
- bump django >= 5.2.8 (fix CVE-2025-64458 and 64459) (backport #691) (#692)
2. v2.3.5 (2025-10-17)
2.1 New Features
- bump django >= 5.2.7 (fix CVE-2025-57833) (#685) (#687)
- add check_delay in circus arbiter config setting (backport #688) (#689)
3. v2.3.4 (2025-09-17)
3.1 New Features
- force django >= 5.2.6 in plugin python3_django (CVE-2025-57833) (#682) (#683)
4. v2.3.3 (2025-09-05)
4.1 New Features
- add comments to explain how to resolve setcap problems (#677) (#679)
5. v2.3.2 (2025-07-16)
6. v2.3.1 (2025-06-16)
6.1 New Features
- bump django to 5.2.2 (to fix CVE-2025-48432) (backport #658) (#660)
7. v2.3.0 (2025-05-13)
7.1 New Features
- rename template python3_django3 in python3_django with django4 (#612)
- authorize django >=5 (ok with built-in sqlite 3.45 in layer core) (#616)
- add support of the nginx port_in_redirect directive (#626)
- add initscripts, make and crontab as dependencies (#628)
- add plugin php (first version, from repository mfservplugin_php) (#645)
- plugin PHP template (#649)
- bump django to 5.0.13 in template django to fix CVE-2025-26699 (#650)
- fallback to index.php script on / ended urls (#654)
7.2 Bug Fixes
- requires django<5 (django 5 requires sqlite >= 3.27 not availabl… (#614)
- stop plugins before nginx stop (#621)
- fix vulnerabilites in django (CVE-2024-45231 and CVE-2024-45230) (#634)
- enable the access log for the healthcheck endpoint (closes #1958) (#637)
- bump django5 to 5.0.11 (CVE-2024-56374) (#644)
- bump django5 to at least 5.0.14 (CVE-2025-27556) (#657)