py-django: updated to 1.11.28

Django 1.11.28 fixes a security issue:
CVE-2020-7471: Potential SQL injection via StringAgg(delimiter)
StringAgg aggregation function was subject to SQL injection, using a suitably crafted delimiter.

2 files changed, 7 insertions, 7 deletions

diff --git a/www/py-django/Makefile b/www/py-django/Makefile
index c1201f0d795..50b1bdcb0b9 100644
--- a/www/py-django/Makefile
+++ b/www/py-django/Makefile
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.112 2019/12/19 13:39:50 adam Exp $
+# $NetBSD: Makefile,v 1.113 2020/02/04 17:23:11 adam Exp $
 
-DISTNAME=	Django-1.11.27
+DISTNAME=	Django-1.11.28
 PKGNAME=	${PYPKGPREFIX}-${DISTNAME:tl}
 CATEGORIES=	www python
 MASTER_SITES=	https://www.djangoproject.com/m/releases/${PKGVERSION_NOREV:R}/
diff --git a/www/py-django/distinfo b/www/py-django/distinfo
index 4bea28feb79..77e52393ca5 100644
--- a/www/py-django/distinfo
+++ b/www/py-django/distinfo
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.91 2019/12/19 13:39:50 adam Exp $
+$NetBSD: distinfo,v 1.92 2020/02/04 17:23:11 adam Exp $
 
-SHA1 (Django-1.11.27.tar.gz) = 8f0ad184cbae6e69dbe2a1f4d7ec32d842657001
-RMD160 (Django-1.11.27.tar.gz) = 6a9c879460b3a84bfcc2a6accec012e142f7e94c
-SHA512 (Django-1.11.27.tar.gz) = 02370bc69d715fbd0d0460e801840331670f7348767040035d80d5e881eae90259dfa4b6406af37d827361691aca464bc4d556e525c32a94413528d0593fdf09
-Size (Django-1.11.27.tar.gz) = 7976980 bytes
+SHA1 (Django-1.11.28.tar.gz) = 1537a67692f9f724d005631cc035d9a58648934a
+RMD160 (Django-1.11.28.tar.gz) = c586124129fb73cb811126f26808f08431ceaf08
+SHA512 (Django-1.11.28.tar.gz) = d814cf8637367133edc231eff78ae5444d2ea431e4eecf89733bb57bec62b5a9eb0751cb8b28205e05975a0ebd96a8480118b2790e98b319643675e13f205af0
+Size (Django-1.11.28.tar.gz) = 7852525 bytes