cheetah (1.0-1) unstable; urgency=high New upstream version. Make sure you RECOMPILE your templates/cache! Read the upstream changelog for more information on feature enhancements and bug fixes. NOTE: python2.2-cheetah DROPPED. Debian no longer ships with Python 2.2. -- Chad Walstrom Fri, 3 Feb 2006 13:50:19 -0600 cheetah (0.9.16-1) unstable; urgency=high This version fixes a grave security problem with the template engine, allowing arbitrary code to be injected through the /tmp directory. This patch removes the use of temporary files completely. The thread of discussion is found at: http://sourceforge.net/mailarchive/forum.php?thread_id=7070332&forum_id=1542 -- Chad Walstrom Sat, 21 May 2005 11:55:03 -0500 cheetah (0.9.16-0) unstable; urgency=low CAUTION: http://sourceforge.net/mailarchive/message.php?msg_id=10636026 From: Tavis Rudd important note about upgrading to / testing 0.9.16 2005-01-23 12:35 The new release outputs significantly different python code. Thus, if you have a set of .tmpl files you compile statically you should recompile them when upgrading, or more importantly, when downgrading if you run into problems with the new release. Tavis There have been **lots** of changes to the source code between 0.9.15 and 0.9.16. Be sure to read the upstream changelog. NOTE: python2.1-cheetah DROPPED. Upstream no longer supports it. -- Chad Walstrom Tue, 5 Apr 2005 15:20:44 -0500 cheetah (0.9.15-5) unstable; urgency=low * First unstable release! -- Chad Walstrom Mon, 15 Mar 2004 15:56:19 -0600 cheetah (0.9.15-3) experimental; urgency=low * A new package was created, cheetah-common, to contain the examples and a manpage for the cheetah scripts. Manpage links were created in each of the pythonX.Y-cheetah packages to point back to the common package. This separate package was created to keep the dependency tree simple, avoiding gratuitous use of virtual packages and circular dependencies in a repurposed python-cheetah. See the README.Debian file for more information. * I intend this to be the last "experimental" upload. Please test and send bug reports to the BTS! -- Chad Walstrom Mon, 15 Mar 2004 15:56:19 -0600