pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/www/py-django py-django: updated to 1.11.20



details:   https://anonhg.NetBSD.org/pkgsrc/rev/a413deaaaabd
branches:  trunk
changeset: 319367:a413deaaaabd
user:      adam <adam%pkgsrc.org@localhost>
date:      Tue Feb 12 13:11:56 2019 +0000

description:
py-django: updated to 1.11.20

1.11.20:
Bugfixes
Corrected packaging error from 1.11.19

1.11.19:
CVE-2019-6975: Memory exhaustion in django.utils.numberformat.format()

If django.utils.numberformat.format() ? used by contrib.admin as well as the the floatformat, filesizeformat, and intcomma templates filters ? received a Decimal with a large number of digits or a 
large exponent, it could lead to significant memory usage due to a call to '{:f}'.format().

To avoid this, decimals with more than 200 digits are now formatted using scientific notation.

diffstat:

 www/py-django/Makefile |   4 ++--
 www/py-django/distinfo |  10 +++++-----
 2 files changed, 7 insertions(+), 7 deletions(-)

diffs (27 lines):

diff -r 5801ec048a7f -r a413deaaaabd www/py-django/Makefile
--- a/www/py-django/Makefile    Tue Feb 12 12:58:46 2019 +0000
+++ b/www/py-django/Makefile    Tue Feb 12 13:11:56 2019 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.104 2019/01/04 22:07:35 adam Exp $
+# $NetBSD: Makefile,v 1.105 2019/02/12 13:11:56 adam Exp $
 
-DISTNAME=      Django-1.11.18
+DISTNAME=      Django-1.11.20
 PKGNAME=       ${PYPKGPREFIX}-${DISTNAME:tl}
 CATEGORIES=    www python
 MASTER_SITES=  https://www.djangoproject.com/m/releases/${PKGVERSION_NOREV:R}/
diff -r 5801ec048a7f -r a413deaaaabd www/py-django/distinfo
--- a/www/py-django/distinfo    Tue Feb 12 12:58:46 2019 +0000
+++ b/www/py-django/distinfo    Tue Feb 12 13:11:56 2019 +0000
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.83 2019/01/04 22:07:35 adam Exp $
+$NetBSD: distinfo,v 1.84 2019/02/12 13:11:56 adam Exp $
 
-SHA1 (Django-1.11.18.tar.gz) = 705d631e290ba20e19c574f8bb2f2c26d281ddb1
-RMD160 (Django-1.11.18.tar.gz) = 2c6819231edb9c6a9049096e84c320f361fb5bbf
-SHA512 (Django-1.11.18.tar.gz) = 35c885e835c5e85257774c65c11bf851e710c745df3366487159f21f90e092236dd8d2cee86e8165945e57fc710989b0ea2747682fa4ce37d5e93d4f664b76c1
-Size (Django-1.11.18.tar.gz) = 7847617 bytes
+SHA1 (Django-1.11.20.tar.gz) = bad59a5672e6abe394ed03b9fd6d592d874bd750
+RMD160 (Django-1.11.20.tar.gz) = 73acd2b9dd8896f1abeb32ef01aef38c7e394875
+SHA512 (Django-1.11.20.tar.gz) = 5a0fff6c9b90a08e98dee6d4d090047adb900a8f6a061f98e685e8998bfe3d97fe7a90aa7d4d2feae67026fb6e4441393d50cb5ab295604ed362a080b987f062
+Size (Django-1.11.20.tar.gz) = 7846576 bytes



Home | Main Index | Thread Index | Old Index