From b43494bcaf41c1f52ad7effdf0c0f02f884a6077eafece1325218bd5c998e3e0 Mon Sep 17 00:00:00 2001
From: Dominique Leuenberger <dleuenberger@suse.com>
Date: Thu, 8 Feb 2018 13:09:56 +0000
Subject: [PATCH] Accepting request 573722 from devel:languages:python

- update to 2.0.2 (bsc#1077714, CVE-2018-6188):
  * Fixed #28883 -- Doc'd that the uuid URL path converter matches lowercase only letters.
  * Fixed a GeoIP2 test failure with the latest GeoIP2 database.
  * Added stub release notes for 2.0.1.
  * Bumped version for 2.0.2 release.
  * Fixed location of spatialite_source label.
  * Fixed #28958 -- Fixed admin changelist crash when using a query expression in the page's ordering.
  * Fixed #28231 -- Doc'd that QuerySet.bulk_create() casts objs to a list.
  * Fixed #29032 -- Fixed an example of using expressions in QuerySet.values().
  * Disambiguated "settings" in SpatiaLite note.
  * Fixed typo in docs/topics/testing/advanced.txt.
  * Post-release version bump.
  * Refs #25604 -- Removed docs for makemigrations --exit.
  * Fixed #29002 -- Corrected cached template loader docs about when it's automatically enabled.
  * Fixed typo in TemplateCommand argument help text.
  * Added stub release notes for 1.11.9.
  * Fixed #28915 -- Prevented SQLite from truncating trailing zeros in the fractional part of DecimalField.
  * Refs #29086 -- Doc'd how to detect bytestring mistakes.
  * Fixed #28886 -- Updated prefix for example django.contrib.auth.urls URLs.
  * Fixed #29081 -- Clarified comments in QuerySet.select_related() example.
  * Refs #27985 -- Reallowed using __exact=None as an alias for __isnull=True if a custom lookup class with lookup_name != None is registered as the exact lookup.
  * Refs #28876 -- Fixed incorrect class-based model index name generation for models with quoted db_table.
  * Removed 'development' word in contributing docs
  * Fixed #29055 -- Doc'd that escapejs doesn't make template literals safe.
  * Fixed #29016 -- Fixed incorrect foreign key nullification on related instance deletion.
  * Fixed grammar in docs/releases/2.0.txt.
  * Fixed #29071 -- Fixed contrib.auth.authenticate() crash if a backend doesn't accept a request but a later one does.
  * Fixed #28944 -- Fixed crash when chaining values()/values_list() after QuerySet.select_for_update(of=()).
  * Fixed #29091 -- Fixed makemigrations crash if migrations directory doesn't have __init__.py.
  * Fixed #28898 -- Corrected admin check to allow a OneToOneField in ModelAdmin.autocomplete_fields.

OBS-URL: https://build.opensuse.org/request/show/573722
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-Django?expand=0&rev=36
---
 Django-2.0.2.tar.gz     |  3 ++
 Django-2.0.2.tar.gz.asc | 63 ++++++++++++++++++++++++++++++++
 Django-2.0.tar.gz       |  3 --
 Django-2.0.tar.gz.asc   | 63 --------------------------------
 python-Django.changes   | 81 +++++++++++++++++++++++++++++++++++++++++
 python-Django.spec      |  4 +-
 6 files changed, 149 insertions(+), 68 deletions(-)
 create mode 100644 Django-2.0.2.tar.gz
 create mode 100644 Django-2.0.2.tar.gz.asc
 delete mode 100644 Django-2.0.tar.gz
 delete mode 100644 Django-2.0.tar.gz.asc

diff --git a/Django-2.0.2.tar.gz b/Django-2.0.2.tar.gz
new file mode 100644
index 0000000..55735d7
--- /dev/null
+++ b/Django-2.0.2.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:dc3b61d054f1bced64628c62025d480f655303aea9f408e5996c339a543b45f0
+size 8002374
diff --git a/Django-2.0.2.tar.gz.asc b/Django-2.0.2.tar.gz.asc
new file mode 100644
index 0000000..1af1abe
--- /dev/null
+++ b/Django-2.0.2.tar.gz.asc
@@ -0,0 +1,63 @@
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA256
+
+This file contains MD5, SHA1, and SHA256 checksums for the source-code
+tarball and wheel files of Django 2.0.2, released February 1, 2018.
+
+To use this file, you will need a working install of PGP or other
+compatible public-key encryption software. You will also need to have
+the Django release manager's public key in your keyring; this key has
+the ID ``1E8ABDC773EDE252`` and can be imported from the MIT
+keyserver. For example, if using the open-source GNU Privacy Guard
+implementation of PGP:
+
+    gpg --keyserver pgp.mit.edu --recv-key 1E8ABDC773EDE252
+
+Once the key is imported, verify this file::
+
+    gpg --verify <<THIS FILENAME>>
+
+Once you have verified this file, you can use normal MD5, SHA1, or SHA256
+checksumming applications to generate the checksums of the Django
+package and compare them to the checksums listed below.
+
+Release packages:
+=================
+
+https://www.djangoproject.com/m/releases/2.0/Django-2.0.2.tar.gz
+https://www.djangoproject.com/m/releases/2.0/Django-2.0.2-py3-none-any.whl
+
+MD5 checksums
+=============
+
+9d4ae0d4193bad0c6af751e54f3a4690  Django-2.0.2.tar.gz
+36d3f5a7f230296c040b11344f48ffce  Django-2.0.2-py3-none-any.whl
+
+SHA1 checksums
+==============
+
+036c521f6984312f34a5f656ec29c0a56ab24ac6  Django-2.0.2.tar.gz
+a2787ee2945f5ed1cb3ab66e93be9f0f9b5af1b5  Django-2.0.2-py3-none-any.whl
+
+SHA256 checksums
+================
+
+dc3b61d054f1bced64628c62025d480f655303aea9f408e5996c339a543b45f0  Django-2.0.2.tar.gz
+7c8ff92285406fb349e765e9ade685eec7271d6f5c3f918e495a74768b765c99  Django-2.0.2-py3-none-any.whl
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1
+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+=OBBN
+-----END PGP SIGNATURE-----
diff --git a/Django-2.0.tar.gz b/Django-2.0.tar.gz
deleted file mode 100644
index 5ccfb5d..0000000
--- a/Django-2.0.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:9614851d4a7ff8cbd32b73c6076441f377c45a5bbff7e771798fb02c43c31f47
-size 7997472
diff --git a/Django-2.0.tar.gz.asc b/Django-2.0.tar.gz.asc
deleted file mode 100644
index ff479c8..0000000
--- a/Django-2.0.tar.gz.asc
+++ /dev/null
@@ -1,63 +0,0 @@
------BEGIN PGP SIGNED MESSAGE-----
-Hash: SHA256
-
-This file contains MD5, SHA1, and SHA256 checksums for the source-code
-tarball and wheel files of Django 2.0, released December 2, 2017.
-
-To use this file, you will need a working install of PGP or other
-compatible public-key encryption software. You will also need to have
-the Django release manager's public key in your keyring; this key has
-the ID ``1E8ABDC773EDE252`` and can be imported from the MIT
-keyserver. For example, if using the open-source GNU Privacy Guard
-implementation of PGP:
-
-    gpg --keyserver pgp.mit.edu --recv-key 1E8ABDC773EDE252
-
-Once the key is imported, verify this file::
-
-    gpg --verify <<THIS FILENAME>>
-
-Once you have verified this file, you can use normal MD5, SHA1, or SHA256
-checksumming applications to generate the checksums of the Django
-package and compare them to the checksums listed below.
-
-Release packages:
-=================
-
-https://www.djangoproject.com/m/releases/2.0/Django-2.0.tar.gz
-https://www.djangoproject.com/m/releases/2.0/Django-2.0-py3-none-any.whl
-
-MD5 checksums
-=============
-
-d1afff8f277842a915852b2113671938  Django-2.0.tar.gz
-da2fdc3901e8751aa7835f49fb6246b2  Django-2.0-py3-none-any.whl
-
-SHA1 checksums
-==============
-
-629dc4e1252f39b0fbc7924c6e8b404d13b4b3bd  Django-2.0.tar.gz
-ed7e0293cc344357b56c51054a311ab9129367ec  Django-2.0-py3-none-any.whl
-
-SHA256 checksums
-================
-
-9614851d4a7ff8cbd32b73c6076441f377c45a5bbff7e771798fb02c43c31f47  Django-2.0.tar.gz
-af18618ce3291be5092893d8522fe3919661bf3a1fb60e3858ae74865a4f07c2  Django-2.0-py3-none-any.whl
------BEGIN PGP SIGNATURE-----
-Version: GnuPG v1
-
-iQIcBAEBCAAGBQJaIsH7AAoJEB6Kvcdz7eJSf+YP/3tFNU46uJKN1ufwIJQNM88x
-c6ZKAtwzOvI95joAhYEDluc7ieK03KN/wYHFOVnhHL5ggDNQLPU9YhfXrvq7Gc80
-SwDMmAwgYG/yUADXYLNw5AVrvTUq5cTsBY9xKLdvGmOV5AdHMyhZTB/qxJsEyplH
-0Za/+cX6HG0DuwzlJXcZYvCWuoVNoT/QNU4eAg9Fqx04RepWP+l8O0GnHdOzpfwb
-OnERqW9iX4pzd44G2PJIUOHX7sxvPx2hderoyK16aePfHs+Ih+pwALpGRdrdl2qG
-y+kiE9YgwREM2KeLfhXa1Pr7TCSbsImRHpv2/24EUohuOwg6wHNY9+MT+PX6/mOY
-tkO9yzgCcqyisxPXMW+buM/bqVp4SAtxFF5+7b0uPEu24hK2YRSWKu7j5mEpiFHK
-ReccvduzXP5U7CT1K/TEuau+wILNPOZ2cZmM0jFtAr2op/YU7fX34/6wNQRnb0X7
-g0yVaNigTJIjoSEWOlGtL9AlxI+IEr5vPxsh8hk0BrVE8+jomW0cmpp977Iw4I+g
-3VffT0UlSom+mTG9lIb5xmcmY/Y6i09OrTuJM20C11TxW7HMIFmvtFq103bseGrZ
-oTsaLSo+Z2zkmuOpRtbJFbWrm9LeTi5im4aKvWsF1ewjt8QXAiYehIMrxvgD6Ci/
-QQYGdTecW3ofiDeTZVGw
-=g0j1
------END PGP SIGNATURE-----
diff --git a/python-Django.changes b/python-Django.changes
index bb891a4..1b08f8c 100644
--- a/python-Django.changes
+++ b/python-Django.changes
@@ -1,3 +1,84 @@
+-------------------------------------------------------------------
+Wed Feb  7 13:54:36 UTC 2018 - tbechtold@suse.com
+
+- update to 2.0.2 (bsc#1077714, CVE-2018-6188):
+  * Fixed #28883 -- Doc'd that the uuid URL path converter matches lowercase only letters.
+  * Fixed a GeoIP2 test failure with the latest GeoIP2 database.
+  * Added stub release notes for 2.0.1.
+  * Bumped version for 2.0.2 release.
+  * Fixed location of spatialite_source label.
+  * Fixed #28958 -- Fixed admin changelist crash when using a query expression in the page's ordering.
+  * Fixed #28231 -- Doc'd that QuerySet.bulk_create() casts objs to a list.
+  * Fixed #29032 -- Fixed an example of using expressions in QuerySet.values().
+  * Disambiguated "settings" in SpatiaLite note.
+  * Fixed typo in docs/topics/testing/advanced.txt.
+  * Post-release version bump.
+  * Refs #25604 -- Removed docs for makemigrations --exit.
+  * Fixed #29002 -- Corrected cached template loader docs about when it's automatically enabled.
+  * Fixed typo in TemplateCommand argument help text.
+  * Added stub release notes for 1.11.9.
+  * Fixed #28915 -- Prevented SQLite from truncating trailing zeros in the fractional part of DecimalField.
+  * Refs #29086 -- Doc'd how to detect bytestring mistakes.
+  * Fixed #28886 -- Updated prefix for example django.contrib.auth.urls URLs.
+  * Fixed #29081 -- Clarified comments in QuerySet.select_related() example.
+  * Refs #27985 -- Reallowed using __exact=None as an alias for __isnull=True if a custom lookup class with lookup_name != None is registered as the exact lookup.
+  * Refs #28876 -- Fixed incorrect class-based model index name generation for models with quoted db_table.
+  * Removed 'development' word in contributing docs
+  * Fixed #29055 -- Doc'd that escapejs doesn't make template literals safe.
+  * Fixed #29016 -- Fixed incorrect foreign key nullification on related instance deletion.
+  * Fixed grammar in docs/releases/2.0.txt.
+  * Fixed #29071 -- Fixed contrib.auth.authenticate() crash if a backend doesn't accept a request but a later one does.
+  * Fixed #28944 -- Fixed crash when chaining values()/values_list() after QuerySet.select_for_update(of=()).
+  * Fixed #29091 -- Fixed makemigrations crash if migrations directory doesn't have __init__.py.
+  * Fixed #28898 -- Corrected admin check to allow a OneToOneField in ModelAdmin.autocomplete_fields.
+  * Fixed #28896 -- Reallowed filtering a queryset with GeometryField=None.
+  * Fixed #28891 -- Documented Origin's loader attribute.
+  * Confirmed support for PostGIS 2.4.
+  * Wrapped an import per isort.
+  * Added release date for 2.0.1 and 1.11.9.
+  * Fixed #28884 -- Fixed crash on SQLite when renaming a field in a model referenced by a ManyToManyField.
+  * Fixed "template tag" spelling in docs.
+  * Fixed #28947 -- Fixed crash when coercing a translatable URL pattern to str.
+  * Fixed typo in docs/topics/i18n/translation.txt.
+  * Refs #28932 -- Skipped the failing test for refs #28915 on Oracle.
+  * Refs #25181 -- Updated timezone.now() docs about obtaining the time in the current time zone.
+  * Updated documented mysqlclient requirement to 1.3.7.
+  * Fixed #28885 -- Fixed hidden content at the bottom of the "The install worked successfully!" page for some languages.
+  * Fixed #28403 -- Added missing formats in FORMAT_MODULE_PATH docs.
+  * Fixed #29067 -- Fixed regression in QuerySet.values_list(..., flat=True) followed by annotate().
+  * Removed note in tutorial about bypassing manage.py.
+  * Fixed #28929 -- Corrected QUnit examples.
+  * Refs #28958 -- Added a test for ModelAdmin with query expressions in ordering.
+  * Updated various links in docs to use HTTPS.
+  * Expanded docs for AbstractBaseUser.has_usable_password().
+  * Fixed #29017 -- Updated BaseCommand.leave_locale_alone doc per refs #24073.
+  * Doc'd specifying the ENGINE setting as part of configuring contrib.gis.
+  * Added stub release notes for 1.11.10.
+  * Fixed #28881 -- Doc'd that CommonPasswordValidator's password list must be lowercase.
+  * Fixed #28784 -- Clarified how migrate --fake works.
+  * Fixed typo in docs/ref/models/expressions.txt.
+  * Fixed #29094 -- Fixed crash when entering an invalid uuid in ModelAdmin.raw_id_fields.
+  * Refs #28876 -- Fixed incorrect foreign key constraint name for models with quoted db_table.
+  * Bumped version for 2.0.1 release.
+  * Fixed #25277 -- Restored test dependency to the original python-memcached.
+  * Fixed #28761 -- Documented how an inline formset's prefix works.
+  * Refs #28856 -- Fixed caching of a GenericForeignKey pointing to a model that uses more than one level of MTI.
+  * Fixed #28966 -- Doc'd that the uuid URL path converter requires dashes
+  * Fixed #29054 -- Fixed a regression where a queryset that annotates with geometry objects crashes.
+  * Reverted "[1.11.x] Refs #28856 -- Fixed caching of a GenericForeignKey pointing to a model that uses more than one level of MTI."
+  * Added "Python 3 Only" trove classifier.
+  * Fixed #28941 -- Fixed crash in testserver command startup.
+  * Fixed import in docs/ref/models/conditional-expressions.txt example.
+  * Fixed CVE-2018-6188 -- Fixed information leakage in AuthenticationForm.
+  * Fixed #28594 -- Removed Jython docs and specific code
+  * Renamed the "Supported versions" label.
+  * Fixed #28878 -- Added python_requires in setup.py and a warning for older pips that don't recognize it.
+  * Fixed typo in docs/ref/contrib/admin/index.txt.
+  * Refs #28856 -- Fixed caching of a GenericForeignKey pointing to a model that uses more than one level of MTI.
+  * Added stub release notes for 2.0.2.
+  * Fixed #28938 -- Corrected Python compatibility in the tutorial.
+  * Fixed #28890 -- Removed newlines between MultiWidget's subwidgets.
+
 -------------------------------------------------------------------
 Tue Dec 12 21:12:18 UTC 2017 - mimi.vx@gmail.com
 
diff --git a/python-Django.spec b/python-Django.spec
index be3cc29..1fe3d27 100644
--- a/python-Django.spec
+++ b/python-Django.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package python-Django
 #
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,7 +19,7 @@
 %{?!python_module:%define python_module() python-%{**} python3-%{**}}
 %define skip_python2 1
 Name:           python-Django
-Version:        2.0
+Version:        2.0.2
 Release:        0
 Summary:        A high-level Python Web framework
 License:        BSD-3-Clause