Tue Aug 6 09:30:46 2019 UTC ()
py-django: updated to 1.11.23

Django 1.11.23:
* CVE-2019-14232: Denial-of-service possibility in django.utils.text.Truncator
* CVE-2019-14233: Denial-of-service possibility in strip_tags()
* CVE-2019-14234: SQL injection possibility in key and index lookups for JSONField/HStoreField
* CVE-2019-14235: Potential memory exhaustion in django.utils.encoding.uri_to_iri()


(adam)
diff -r1.107 -r1.108 pkgsrc/www/py-django/Makefile
diff -r1.86 -r1.87 pkgsrc/www/py-django/distinfo
cvs diff -r1.107 -r1.108 pkgsrc/www/py-django/Makefile (expand / switch to unified diff)

--- pkgsrc/www/py-django/Makefile 2019/07/01 18:23:52 1.107
+++ pkgsrc/www/py-django/Makefile 2019/08/06 09:30:46 1.108
@@ -1,16 +1,16 @@ @@ -1,16 +1,16 @@
1# $NetBSD: Makefile,v 1.107 2019/07/01 18:23:52 adam Exp $ 1# $NetBSD: Makefile,v 1.108 2019/08/06 09:30:46 adam Exp $
2 2
3DISTNAME= Django-1.11.22 3DISTNAME= Django-1.11.23
4PKGNAME= ${PYPKGPREFIX}-${DISTNAME:tl} 4PKGNAME= ${PYPKGPREFIX}-${DISTNAME:tl}
5CATEGORIES= www python 5CATEGORIES= www python
6MASTER_SITES= https://www.djangoproject.com/m/releases/${PKGVERSION_NOREV:R}/ 6MASTER_SITES= https://www.djangoproject.com/m/releases/${PKGVERSION_NOREV:R}/
7 7
8MAINTAINER= joerg@NetBSD.org 8MAINTAINER= joerg@NetBSD.org
9HOMEPAGE= https://www.djangoproject.com/ 9HOMEPAGE= https://www.djangoproject.com/
10COMMENT= Django, a high-level Python Web framework 10COMMENT= Django, a high-level Python Web framework
11LICENSE= modified-bsd 11LICENSE= modified-bsd
12 12
13DEPENDS+= ${PYPKGPREFIX}-pytz-[0-9]*:../../time/py-pytz 13DEPENDS+= ${PYPKGPREFIX}-pytz-[0-9]*:../../time/py-pytz
14 14
15USE_LANGUAGES= # none 15USE_LANGUAGES= # none
16 16
cvs diff -r1.86 -r1.87 pkgsrc/www/py-django/distinfo (expand / switch to unified diff)

--- pkgsrc/www/py-django/distinfo 2019/07/01 18:23:52 1.86
+++ pkgsrc/www/py-django/distinfo 2019/08/06 09:30:46 1.87
@@ -1,6 +1,6 @@ @@ -1,6 +1,6 @@
1$NetBSD: distinfo,v 1.86 2019/07/01 18:23:52 adam Exp $ 1$NetBSD: distinfo,v 1.87 2019/08/06 09:30:46 adam Exp $
2 2
3SHA1 (Django-1.11.22.tar.gz) = 450a784b288c6ec89a8fedebeeb9c4a2746f3243 3SHA1 (Django-1.11.23.tar.gz) = 6127e40ed8daf85479c984d2d3757cdeed208c8f
4RMD160 (Django-1.11.22.tar.gz) = 7c724a9db7f18f1b706641781dcfbb6db52e42bf 4RMD160 (Django-1.11.23.tar.gz) = bdf6292c254bffbb7dd25109d4cab9f550bdb06b
5SHA512 (Django-1.11.22.tar.gz) = 687cba07c0549b18ef386df5663e968871b8fc950b9ddf4267f7e2f4ea43c98dc92e76fae39e07a0760b183653e38cdf9909cfaeca874e8230f24bd49ef95d6a 5SHA512 (Django-1.11.23.tar.gz) = c4c5d82e4ecf1a100637ac32eafd3fb0d7690ba5c0cb884846f31c434c0cb1282d94149e031c577d676570f3b331c2a320d58f34f40ac02deae089c4b61c65ea
6Size (Django-1.11.22.tar.gz) = 7972885 bytes 6Size (Django-1.11.23.tar.gz) = 7849738 bytes