60d6b2a58c
Fixes: * CVE-2025-13372: Potential SQL injection in FilteredRelation column aliases on PostgreSQL * CVE-2025-64460: Potential denial-of-service vulnerability in XML Deserializer Full release notes: https://docs.djangoproject.com/en/6.0/releases/5.2.9/ Signed-off-by: Marcus Hoffmann <buildroot@bubu1.eu> Signed-off-by: Julien Olivain <ju.o@free.fr> (cherry picked from commit 2622f9ca25cdc179ed1be3d733fb9b963a7fc5b8) Signed-off-by: Thomas Perale <thomas.perale@mind.be>
28 lines
1.2 KiB
Makefile
28 lines
1.2 KiB
Makefile
################################################################################
|
|
#
|
|
# python-django
|
|
#
|
|
################################################################################
|
|
|
|
PYTHON_DJANGO_VERSION = 5.2.9
|
|
PYTHON_DJANGO_SOURCE = django-$(PYTHON_DJANGO_VERSION).tar.gz
|
|
# The official Django site has an unpractical URL
|
|
PYTHON_DJANGO_SITE = https://files.pythonhosted.org/packages/eb/1c/188ce85ee380f714b704283013434976df8d3a2df8e735221a02605b6794
|
|
PYTHON_DJANGO_LICENSE = BSD-3-Clause, MIT (jquery, utils/archive.py), BSD-2-Clause (inlines.js)
|
|
PYTHON_DJANGO_LICENSE_FILES = LICENSE \
|
|
django/contrib/gis/measure.py \
|
|
django/contrib/gis/gdal/LICENSE \
|
|
django/contrib/gis/geos/LICENSE \
|
|
django/contrib/admin/static/admin/js/inlines.js \
|
|
django/contrib/admin/static/admin/js/vendor/jquery/LICENSE.txt \
|
|
django/contrib/admin/static/admin/js/vendor/select2/LICENSE.md \
|
|
django/contrib/admin/static/admin/js/vendor/xregexp/LICENSE.txt \
|
|
django/contrib/admin/static/admin/img/LICENSE \
|
|
django/dispatch/license.txt \
|
|
django/utils/archive.py
|
|
PYTHON_DJANGO_CPE_ID_VENDOR = djangoproject
|
|
PYTHON_DJANGO_CPE_ID_PRODUCT = django
|
|
PYTHON_DJANGO_SETUP_TYPE = setuptools
|
|
|
|
$(eval $(python-package))
|