Resolved Bugs
1179672 – CVE-2015-0219 Django: WSGI header spoofing via underscore/dash conflation
1179675 – CVE-2015-0220 Django: Mitigated possible XSS attack via user-supplied redirect URLs
1179679 – CVE-2015-0221 Django: denial of service attack against django.views.static.serve
1179685 – CVE-2015-0222 Django: database denial of service with ModelMultipleChoiceField
1181940 – CVE-2015-0219 python-django14: Django: WSGI header spoofing via underscore/dash conflation [fedora-20]
1181944 – CVE-2015-0220 python-django14: Django: Mitigated possible XSS attack via user-supplied redirect URLs [fedora-20]
1181947 – CVE-2015-0221 python-django14: Django: denial of service attack against django.views.static.serve [fedora-20]<br
update to 1.4.18 fixing multiple CVEs