- Update to 5.1.8
* CVE-2025-27556: Potential denial-of-service vulnerability in
LoginView, LogoutView, and set_language() on Windows
* Fixed a regression in Django 5.1.7 where the removal of the single_object
parameter unintentionally altered the signature and return type of
LogEntryManager.log_actions()
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python:django/python-Django?expand=0&rev=192
This commit is contained in:
Git OBS Bridge
@@ -1,65 +0,0 @@
|
||||
-----BEGIN PGP SIGNED MESSAGE-----
|
||||
Hash: SHA256
|
||||
|
||||
This file contains MD5, SHA1, and SHA256 checksums for the source-code
|
||||
tarball and wheel files of Django 5.1.7, released March 6, 2025.
|
||||
|
||||
To use this file, you will need a working install of PGP or other
|
||||
compatible public-key encryption software. You will also need to have
|
||||
the Django release manager's public key in your keyring. This key has
|
||||
the ID ``3955B19851EA96EF`` and can be imported from the MIT
|
||||
keyserver, for example, if using the open-source GNU Privacy Guard
|
||||
implementation of PGP:
|
||||
|
||||
gpg --keyserver pgp.mit.edu --recv-key 3955B19851EA96EF
|
||||
|
||||
or via the GitHub API:
|
||||
|
||||
curl https://github.com/sarahboyce.gpg | gpg --import -
|
||||
|
||||
Once the key is imported, verify this file:
|
||||
|
||||
gpg --verify Django-5.1.7.checksum.txt
|
||||
|
||||
Once you have verified this file, you can use normal MD5, SHA1, or SHA256
|
||||
checksumming applications to generate the checksums of the Django
|
||||
package and compare them to the checksums listed below.
|
||||
|
||||
Release packages
|
||||
================
|
||||
|
||||
https://www.djangoproject.com/m/releases/5.1/Django-5.1.7-py3-none-any.whl
|
||||
https://www.djangoproject.com/m/releases/5.1/Django-5.1.7.tar.gz
|
||||
|
||||
MD5 checksums
|
||||
=============
|
||||
|
||||
bf291218572733211f4f41fab183d2e4 Django-5.1.7-py3-none-any.whl
|
||||
be16b25fb0dc357e756668078a400f95 Django-5.1.7.tar.gz
|
||||
|
||||
SHA1 checksums
|
||||
==============
|
||||
|
||||
e5d18f470b91eb56f0a50ce1573348a69bc944d6 Django-5.1.7-py3-none-any.whl
|
||||
f17baedab00f847150a096d9593e532d3e840189 Django-5.1.7.tar.gz
|
||||
|
||||
SHA256 checksums
|
||||
================
|
||||
|
||||
1323617cb624add820cb9611cdcc788312d250824f92ca6048fda8625514af2b Django-5.1.7-py3-none-any.whl
|
||||
30de4ee43a98e5d3da36a9002f287ff400b43ca51791920bfb35f6917bfe041c Django-5.1.7.tar.gz
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
|
||||
iQHhBAEBCABLFiEE6xs4DYrFLQArrNMyOVWxmFHqlu8FAmfJYWwtHDQyMjk2NTY2
|
||||
K3NhcmFoYm95Y2VAdXNlcnMubm9yZXBseS5naXRodWIuY29tAAoJEDlVsZhR6pbv
|
||||
xIcL/iwdZbuF3MOzTRNPNDo1P+MztLL2E7ralnLklcneDoEuNPx3iTyeOycBu5c5
|
||||
PWluzQIASnnnUsTnwm2yBka8ogqgdOh1jxXy+Kvfe15qfWA5UkkiMpjnAHY14/Uh
|
||||
9Ibb2wr44J3LU5Y1+7MQweq50M3dAjVGSnqxTO8zuW7LJsQGsVfgkhXgVd+/pgkx
|
||||
XR29jXZtBAX21yObIsjK6Rw52VGZYDfFcIZ13MjexlorR+F5sIZWnPPykMyxhIRE
|
||||
mn4V1ompDAywJyg6eFmPgpogiPU3WEu8zImDHPcw7DbTXTbMzwmdFrLzJQHpZqmn
|
||||
GD3FGC9Vp76o2b21sJrn1s7uw8/cfUp+NoCvIeYQc+SKuLDDtgKX0O9J1yWEi74H
|
||||
LFuWdSxXosLCpHP9hq6h8uNXesaMy0tbKEK9+PE718OmGapmZgFtXmDVCha235gM
|
||||
BE6hS+A4+ERH/9GAw3TgbAaf8NAT8Eere2Pmn7pjCOw9Nbtne9dEq91ytGJwYzod
|
||||
jl5+cA==
|
||||
=OdRx
|
||||
-----END PGP SIGNATURE-----
|
||||
@@ -1,3 +0,0 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:30de4ee43a98e5d3da36a9002f287ff400b43ca51791920bfb35f6917bfe041c
|
||||
size 10716510
|
||||
66
Django-5.1.8.checksum.txt
Normal file
66
Django-5.1.8.checksum.txt
Normal file
@@ -0,0 +1,66 @@
|
||||
-----BEGIN PGP SIGNED MESSAGE-----
|
||||
Hash: SHA256
|
||||
|
||||
This file contains MD5, SHA1, and SHA256 checksums for the source-code
|
||||
tarball and wheel files of Django 5.1.8, released April 2, 2025.
|
||||
|
||||
To use this file, you will need a working install of PGP or other
|
||||
compatible public-key encryption software. You will also need to have
|
||||
the Django release manager's public key in your keyring. This key has
|
||||
the ID ``3955B19851EA96EF`` and can be imported from the MIT
|
||||
keyserver, for example, if using the open-source GNU Privacy Guard
|
||||
implementation of PGP:
|
||||
|
||||
gpg --keyserver pgp.mit.edu --recv-key 3955B19851EA96EF
|
||||
|
||||
or via the GitHub API:
|
||||
|
||||
curl https://github.com/sarahboyce.gpg | gpg --import -
|
||||
|
||||
Once the key is imported, verify this file:
|
||||
|
||||
gpg --verify Django-5.1.8.checksum.txt
|
||||
|
||||
Once you have verified this file, you can use normal MD5, SHA1, or SHA256
|
||||
checksumming applications to generate the checksums of the Django
|
||||
package and compare them to the checksums listed below.
|
||||
|
||||
Release packages
|
||||
================
|
||||
|
||||
https://www.djangoproject.com/download/5.1.8/tarball/
|
||||
https://www.djangoproject.com/download/5.1.8/wheel/
|
||||
|
||||
MD5 checksums
|
||||
=============
|
||||
|
||||
80247a8b48cdac55e5ad3fb682ab71a3 Django-5.1.8.tar.gz
|
||||
dad8bfd4a7f804b130bcc909e7bfae48 Django-5.1.8-py3-none-any.whl
|
||||
|
||||
SHA1 checksums
|
||||
==============
|
||||
|
||||
6984d60de2f84afc49c1524fb993ae95bbff866a Django-5.1.8.tar.gz
|
||||
3035495c695b6adede0d6e74f6a31c9c0fd3b549 Django-5.1.8-py3-none-any.whl
|
||||
|
||||
SHA256 checksums
|
||||
================
|
||||
|
||||
42e92a1dd2810072bcc40a39a212b693f94406d0ba0749e68eb642f31dc770b4 Django-5.1.8.tar.gz
|
||||
11b28fa4b00e59d0def004e9ee012fefbb1065a5beb39ee838983fd24493ad4f Django-5.1.8-py3-none-any.whl
|
||||
|
||||
-----BEGIN PGP SIGNATURE-----
|
||||
|
||||
iQHhBAEBCABLFiEE6xs4DYrFLQArrNMyOVWxmFHqlu8FAmfs9m8tHDQyMjk2NTY2
|
||||
K3NhcmFoYm95Y2VAdXNlcnMubm9yZXBseS5naXRodWIuY29tAAoJEDlVsZhR6pbv
|
||||
lDQMAJDH/oY2XdHZO2xqA8/Fa47/ZdY+wsi0jvjucSV0oAkMxZb284kLxL5r6Lbr
|
||||
DaVxZErlxcNhAJrxFB3hSAkPNLaqbTt/kE2nFikwV1LS82IVanRy6Z7RcM91wS8Z
|
||||
7eW8xVQ0jcrhe1pssJqlHZ8ZeoMrWQAjVjKOEcGhJiMVlkXtdal8QTdB4rKnEIyK
|
||||
pGWzt80OPpSe3Pw2w5UNt19csh42Z1nMKfg/6Sc8J6v/8LBg5dZ5vMh0fkKtF14D
|
||||
LAUPUrDQEbuVQU/zUCCfmUyNgCeUtwjiPkRezjSpc0OJcv4oXFgSGoxaZ9NQIxEW
|
||||
sxw+4pQCEhYxB1Bs9CVv48Njs+FBFRw1L89mX/Ergxt6JJmp6CDZkx54QJjTH7vH
|
||||
FHNTfPxmrOhyAyZp8ANdRlI94M6NbbPijxxwNZb3VVV+BJY1BL8yo69k/PpSHd3k
|
||||
DRBHW134QUtplCf3kOCmnLGo8jILfzpsB9Ynu6/sM7bQkKCRvk/M1zWa/dweoYQV
|
||||
GhaYhg==
|
||||
=gQDi
|
||||
-----END PGP SIGNATURE-----
|
||||
3
Django-5.1.8.tar.gz
Normal file
3
Django-5.1.8.tar.gz
Normal file
@@ -0,0 +1,3 @@
|
||||
version https://git-lfs.github.com/spec/v1
|
||||
oid sha256:42e92a1dd2810072bcc40a39a212b693f94406d0ba0749e68eb642f31dc770b4
|
||||
size 10723602
|
||||
@@ -1,3 +1,13 @@
|
||||
-------------------------------------------------------------------
|
||||
Mon Apr 7 14:19:10 UTC 2025 - Markéta Machová <mmachova@suse.com>
|
||||
|
||||
- Update to 5.1.8
|
||||
* CVE-2025-27556: Potential denial-of-service vulnerability in
|
||||
LoginView, LogoutView, and set_language() on Windows
|
||||
* Fixed a regression in Django 5.1.7 where the removal of the single_object
|
||||
parameter unintentionally altered the signature and return type of
|
||||
LogEntryManager.log_actions()
|
||||
|
||||
-------------------------------------------------------------------
|
||||
Sun Mar 30 08:28:57 UTC 2025 - Dirk Müller <dmueller@suse.com>
|
||||
|
||||
|
||||
@@ -21,7 +21,7 @@
|
||||
%bcond_with memcached
|
||||
%{?sle15_python_module_pythons}
|
||||
Name: python-Django
|
||||
Version: 5.1.7
|
||||
Version: 5.1.8
|
||||
Release: 0
|
||||
Summary: A high-level Python Web framework
|
||||
License: BSD-3-Clause
|
||||
@@ -141,6 +141,6 @@ export PATH=%{_libdir}/chromium:$PATH
|
||||
%python_alternative %{_bindir}/django-admin
|
||||
%{_datadir}/bash-completion/completions/django_bash_completion-%{python_bin_suffix}.sh
|
||||
%{python_sitelib}/django
|
||||
%{python_sitelib}/?jango-%{version}*-info
|
||||
%{python_sitelib}/[dD]jango-%{version}*-info
|
||||
|
||||
%changelog
|
||||
|
||||
Reference in New Issue
Block a user