'[oe] [hardknott 19/20] python3-django: Upgrade 3.2.3 -> 3.2.4'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openembedded-devel
Subject:    [oe] [hardknott 19/20] python3-django: Upgrade 3.2.3 -> 3.2.4
From:       "Armin Kuster" <akuster808 () gmail ! com>
Date:       2021-06-27 20:22:14
Message-ID: f0812a84c9cc84aadde1778d1bdc31c6f69c8357.1624825239.git.akuster808 () gmail ! com
[Download RAW message or body]

From: Leon Anavi <leon.anavi@konsulko.com>

Upgrade to release 3.2.4:

- CVE-2021-33203: Potential directory traversal via admindocs
- CVE-2021-33571: Possible indeterminate SSRF, RFI, and LFI attacks
  since validators accepted leading zeros in IPv4 addresses
- Fixed a bug in Django 3.2 where a final catch-all view in the
  admin didn't respect the server-provided value of SCRIPT_NAME
  when redirecting unauthenticated users to the login page.
- Fixed a bug in Django 3.2 where a system check would crash on an
  abstract model
- Prevented unnecessary initialization of unused caches following
  a regression in Django 3.2
- Fixed a crash in Django 3.2 that could occur when running
  mod_wsgi with the recommended settings while the Windows
  colorama library was installed
- Fixed a bug in Django 3.2 that would trigger the auto-reloader
  for template changes when directory paths were specified with
  strings
- Fixed a regression in Django 3.2 that caused a crash of
  auto-reloader with AttributeError, e.g. inside a Conda
  environment
- Fixed a regression in Django 3.2 that caused a loss of precision
  for operations with DecimalField on MySQL

Signed-off-by: Leon Anavi <leon.anavi@konsulko.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
(cherry picked from commit 624e3e18982775d2ea88e55e16d179420f0575fc)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
---
 .../python/{python3-django_3.2.3.bb => python3-django_3.2.4.bb} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta-python/recipes-devtools/python/{python3-django_3.2.3.bb => \
python3-django_3.2.4.bb} (77%)

diff --git a/meta-python/recipes-devtools/python/python3-django_3.2.3.bb \
b/meta-python/recipes-devtools/python/python3-django_3.2.4.bb similarity index 77%
rename from meta-python/recipes-devtools/python/python3-django_3.2.3.bb
rename to meta-python/recipes-devtools/python/python3-django_3.2.4.bb
index 7a9611ca12..52504885e5 100644
--- a/meta-python/recipes-devtools/python/python3-django_3.2.3.bb
+++ b/meta-python/recipes-devtools/python/python3-django_3.2.4.bb
@@ -1,7 +1,7 @@
 require python-django.inc
 inherit setuptools3
 
-SRC_URI[sha256sum] = \
"13ac78dbfd189532cad8f383a27e58e18b3d33f80009ceb476d7fcbfc5dcebd8" \
+SRC_URI[sha256sum] = \
"66c9d8db8cc6fe938a28b7887c1596e42d522e27618562517cc8929eb7e7f296"  
 RDEPENDS_${PN} += "\
     ${PYTHON_PN}-sqlparse \
-- 
2.17.1



-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#92054): https://lists.openembedded.org/g/openembedded-devel/message/92054
Mute This Topic: https://lists.openembedded.org/mt/83831092/4455120
Group Owner: openembedded-devel+owner@lists.openembedded.org
Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [openembedded-devel@marc.info]
-=-=-=-=-=-=-=-=-=-=-=-



[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic