python-Django
Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design.
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout Cloud:OpenStack:Pike/python-Django && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| CVE-2020-13254.patch | 0000010390 10.1 KB | |
| CVE-2020-13596.patch | 0000003050 2.98 KB | |
| Django-1.11.29.tar.gz | 0007977916 7.61 MB | |
| Django-1.11.29.tar.gz.asc | 0000002499 2.44 KB | |
| python-Django-rpmlintrc | 0000000214 214 Bytes | |
| python-Django.changes | 0000072503 70.8 KB | |
| python-Django.keyring | 0000017951 17.5 KB | |
| python-Django.spec | 0000004536 4.43 KB |
Revision 11 (latest revision is 18)
Flávio Ramalho (flaviosr)
accepted
request 817887
from
Johannes Grassler (jgrassler)
(revision 11)
- Update to version 1.11.29 (bsc#1161919, CVE-2020-7471, bsc#1165022, CVE-2020-9402, bsc#1159447, CVE-2019-19844) * Fixed CVE-2020-9402 -- Properly escaped tolerance parameter in GIS functions and aggregates on Oracle. * Pinned PyYAML < 5.3 in test requirements. * Fixed CVE-2020-7471 -- Properly escaped StringAgg(delimiter) parameter. * Fixed timezones tests for PyYAML 5.3+. * Fixed CVE-2019-19844 -- Used verified user email for password reset requests. * Fixed #31073 -- Prevented CheckboxInput.get_context() from mutating attrs. * Fixed #30826 -- Fixed crash of many JSONField lookups when one hand side is key transform. * Fixed #30769 -- Fixed a crash when filtering against a subquery JSON/HStoreField annotation. * Fixed #30672 -- Fixed crash of JSONField/HStoreField key transforms on expressions with params. * Added patch CVE-2020-13254.patch * Added patch CVE-2020-13596.patch
Comments 0