diff options
| author | adam <adam@pkgsrc.org> | 2020-03-12 16:18:54 +0000 |
|---|---|---|
| committer | adam <adam@pkgsrc.org> | 2020-03-12 16:18:54 +0000 |
| commit | 5c486b3be0a3c280e5ef2cdd41ca3ca40838e082 (patch) | |
| tree | fdeae0810cbdce5683b5d5a726811d556d3fc3f8 /www | |
| parent | 3693edbb6b8cbe56841e93278a749496abf972a7 (diff) | |
| download | pkgsrc-5c486b3be0a3c280e5ef2cdd41ca3ca40838e082.tar.gz | |
py-django3: updated to 3.0.4
Django 3.0.4 fixes a security issue and several bugs in 3.0.3.
CVE-2020-9402: Potential SQL injection via tolerance parameter in GIS functions and aggregates on Oracle
GIS functions and aggregates on Oracle were subject to SQL injection, using a suitably crafted tolerance.
Bugfixes
Fixed a data loss possibility when using caching from async code.
Fixed a regression in Django 3.0 that caused a file response using a temporary file to be closed incorrectly.
Fixed a data loss possibility in the select_for_update(). When using related fields or parent link fields with Multi-table inheritance in the of argument, the corresponding models were not locked.
Fixed a regression in Django 3.0 that caused misplacing parameters in logged SQL queries on Oracle.
Fixed a regression in Django 3.0.3 that caused misplacing parameters of SQL queries when subtracting DateField or DateTimeField expressions on MySQL.
Fixed a regression in Django 3.0 that didn’t include subqueries spanning multivalued relations in the GROUP BY clause
Diffstat (limited to 'www')
| -rw-r--r-- | www/py-django3/Makefile | 4 | ||||
| -rw-r--r-- | www/py-django3/distinfo | 10 |
2 files changed, 7 insertions, 7 deletions
diff --git a/www/py-django3/Makefile b/www/py-django3/Makefile index 684bb6f7636..3ab1c60c2a8 100644 --- a/www/py-django3/Makefile +++ b/www/py-django3/Makefile @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.1 2020/02/17 20:23:21 adam Exp $ +# $NetBSD: Makefile,v 1.2 2020/03/12 16:18:54 adam Exp $ -DISTNAME= Django-3.0.3 +DISTNAME= Django-3.0.4 PKGNAME= ${PYPKGPREFIX}-${DISTNAME:tl} CATEGORIES= www python MASTER_SITES= https://www.djangoproject.com/m/releases/${PKGVERSION_NOREV:R}/ diff --git a/www/py-django3/distinfo b/www/py-django3/distinfo index 4ec2f718fc2..e9b32292823 100644 --- a/www/py-django3/distinfo +++ b/www/py-django3/distinfo @@ -1,6 +1,6 @@ -$NetBSD: distinfo,v 1.1 2020/02/17 20:23:21 adam Exp $ +$NetBSD: distinfo,v 1.2 2020/03/12 16:18:54 adam Exp $ -SHA1 (Django-3.0.3.tar.gz) = a5704bb9bbdf1a441f9f5d9752d229c1f861c391 -RMD160 (Django-3.0.3.tar.gz) = 5cc57e590e9fb514dbccf8ec7ec67aa572640abf -SHA512 (Django-3.0.3.tar.gz) = c9c432fe8bafec1883522d9fb6fb2caa70b57788a9079f3b89e0455166b096f4b537e41d3a5170a829566bb51a70e824ff09f065866656c1d0b351383e8f468f -Size (Django-3.0.3.tar.gz) = 8932015 bytes +SHA1 (Django-3.0.4.tar.gz) = 97030f70e8f385c2f1cea031fb1e17a32e93f9cf +RMD160 (Django-3.0.4.tar.gz) = 73b7ffe766cfcf2bad698769a3e5f23d37ee1dcd +SHA512 (Django-3.0.4.tar.gz) = f08bea35d67ed6c0a4df3252abc55bcab80195de7201c51bb3c94ca9068907771751b64ebbd1ffc0c4577473d948df1b48cda7a33c97c2b48c615e094eeb5ae6 +Size (Django-3.0.4.tar.gz) = 9060331 bytes |