---
- branch: MAIN
  date: Wed Jan 19 09:48:47 UTC 2022
  files:
  - new: '1.41'
    old: '1.40'
    path: pkgsrc/www/py-django2/Makefile
    pathrev: pkgsrc/www/py-django2/Makefile@1.41
    type: modified
  - new: '1.38'
    old: '1.37'
    path: pkgsrc/www/py-django2/distinfo
    pathrev: pkgsrc/www/py-django2/distinfo@1.38
    type: modified
  id: 20220119T094847Z.528a25bb3966fc7404b6f78f39231aafd26a130b
  log: |
    py-django2: updated to 2.2.26

    Django 2.2.26 fixes one security issue with severity ï¿½ï¿½ï¿½mediumï¿½ï¿½ï¿½ and two security issues with severity ï¿½ï¿½ï¿½lowï¿½ï¿½ï¿½ in 2.2.25.
    - CVE-2021-45115: Denial-of-service possibility in UserAttributeSimilarityValidator
    - CVE-2021-45116: Potential information disclosure in dictsort template filter
    - CVE-2021-45452: Potential directory-traversal via Storage.save()
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/www/py-django2'
  unixtime: '1642585727'
  user: adam