Changes 1.8.3:

* Denial-of-service possibility by filling session store * Header injection possibility since validators accept newlines in input * Denial-of-service possibility in URL validation * Bugfixes
2015-07-17 15:50:53 +00:00 · 2015-07-17 15:50:53 +00:00 · 9ab9cc94a3
commit 9ab9cc94a3
parent 2cd480ff59
3 changed files with 300 additions and 1151 deletions
--- a/www/py-django/Makefile
+++ b/www/py-django/Makefile
@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.62 2015/04/13 23:12:43 rodent Exp $
+# $NetBSD: Makefile,v 1.63 2015/07/17 15:50:53 adam Exp $

-DISTNAME=	Django-1.7.7
+DISTNAME=	Django-1.8.3
 PKGNAME=	${PYPKGPREFIX}-${DISTNAME:tl}
 CATEGORIES=	www python
 MASTER_SITES=	http://www.djangoproject.com/m/releases/${PKGVERSION_NOREV:R}/
--- a/www/py-django/PLIST
+++ b/www/py-django/PLIST
--- a/www/py-django/distinfo
+++ b/www/py-django/distinfo
@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.44 2015/03/19 09:53:45 adam Exp $
+$NetBSD: distinfo,v 1.45 2015/07/17 15:50:53 adam Exp $

-SHA1 (Django-1.7.7.tar.gz) = 614cc9f8e1af6630c54300f6bdd88e7b783614c3
-RMD160 (Django-1.7.7.tar.gz) = 4a1f57afaac786f953498ccd4568b514f7153fd0
-Size (Django-1.7.7.tar.gz) = 7603286 bytes
+SHA1 (Django-1.8.3.tar.gz) = 229dae14aa42169e2e2a6ecb1e00e75f0d57ed35
+RMD160 (Django-1.8.3.tar.gz) = 4a54b63b3408d37c1defe549a622aa4ef228eac6
+Size (Django-1.8.3.tar.gz) = 7284327 bytes