summaryrefslogtreecommitdiffstats
path: root/meta-python/recipes-devtools/python/python3-django_4.0.2.bb
Commit message (Collapse)AuthorAgeFilesLines
* python3-django: upgrade to Django 4.2.10 LTS releaseFathi Boudra2024-02-161-14/+0
| | | | | | | | | | | | | | | Django 4.0.x is no longer supported since April 2023. Upgrade to the latest 4.x LTS release. Fixes CVEs: CVE-2024-24680: Potential denial-of-service in intcomma template filter CVE-2023-43665: Denial-of-service possibility in django.utils.text.Truncator CVE-2023-41164: Potential denial of service vulnerability in django.utils.encoding.uri_to_iri() CVE-2023-36053: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator CVE-2023-31047: Potential bypass of validation when uploading multiple files using one form field Signed-off-by: Fathi Boudra <fathi.boudra@linaro.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-django: Add python3-asgiref runtime dependencyJagadeesh Krishnanjanappa2022-08-231-0/+1
| | | | | | | | | | Add runtime dependency on python3-asgiref as the "django-admin" script needs asgiref module. More info: https://bugzilla.yoctoproject.org/show_bug.cgi?id=14888 Signed-off-by: Jagadeesh Krishnanjanappa <workjagadeesh@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* python3-django: upgrade 4.0.1 -> 4.0.2Trevor Gamblin2022-03-151-0/+13
4.0.2 fixes CVE-2022-22818 and CVE-2022-23833. See: https://docs.djangoproject.com/en/dev/releases/4.0.2/ Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: tgamblin <trevor.gamblin@windriver.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-05 09:47:20 +0000