Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-01-10 15:22:18 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.28833 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-Django1" Thu Jan 10 15:22:18 2019 rev:7 rq:663752 version:1.11.18 Changes: -------- --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2018-12-11 15:48:19.138174219 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.28833/python-Django1.changes 2019-01-10 15:22:28.654384081 +0100 @@ -1,0 +2,9 @@ +Tue Jan 8 15:20:11 UTC 2019 - kber...@suse.com + +- Update to 1.11.18 + * CVE-2019-3498 -- Fixed content spoofing possiblity in the default 404 page. + * Pinned Pillow != 5.4.0 in test requirements. + * Fixed broken links to PyYAML page. + * Doc'd that mysqlclient 1.3.14 and later isn't supported. + +------------------------------------------------------------------- Old: ---- Django-1.11.17.tar.gz Django-1.11.17.tar.gz.asc New: ---- Django-1.11.18.tar.gz Django-1.11.18.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-Django1.spec ++++++ --- /var/tmp/diff_new_pack.w3DIzn/_old 2019-01-10 15:22:29.306383406 +0100 +++ /var/tmp/diff_new_pack.w3DIzn/_new 2019-01-10 15:22:29.310383402 +0100 @@ -1,7 +1,7 @@ # # spec file for package python-Django1 # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -12,7 +12,7 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via https://bugs.opensuse.org/ +# Please submit bugfixes or comments via http://bugs.opensuse.org/ # @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version: 1.11.17 +Version: 1.11.18 Release: 0 Summary: A high-level Python Web framework License: BSD-3-Clause ++++++ Django-1.11.17.tar.gz -> Django-1.11.18.tar.gz ++++++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.17.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.28833/Django-1.11.18.tar.gz differ: char 5, line 1 ++++++ Django-1.11.17.tar.gz.asc -> Django-1.11.18.tar.gz.asc ++++++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.17.tar.gz.asc 2018-12-11 15:48:17.214176341 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.28833/Django-1.11.18.tar.gz.asc 2019-01-10 15:22:28.566384172 +0100 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.17, released December 3, 2018. +tarball and wheel files of Django 1.11.18, released January 4, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT +the ID ``1E8ABDC773EDE252`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: - gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 + gpg --keyserver pgp.mit.edu --recv-key 1E8ABDC773EDE252 Once the key is imported, verify this file:: @@ -24,39 +24,39 @@ Release packages: ================= -https://www.djangoproject.com/m/releases/1.11/Django-1.11.17-py2.py3-none-any.whl -https://www.djangoproject.com/m/releases/1.11/Django-1.11.17.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.18.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.18-py2.py3-none-any.whl MD5 checksums ============= -a638d81ed5a9f3e72aaa623208a0328e Django-1.11.17-py2.py3-none-any.whl -7ca3b663495a78895f014573f37db606 Django-1.11.17.tar.gz +ef734560a81a8c0eb535e7a46205bd72 Django-1.11.18.tar.gz +45315e6544510143dfcb066584447ecc Django-1.11.18-py2.py3-none-any.whl SHA1 checksums ============== -f9f2302e3c18d2655a6912fcea1a3b822702f65e Django-1.11.17-py2.py3-none-any.whl -eefdad39bfc854130676d9a0780f083f93e55642 Django-1.11.17.tar.gz +705d631e290ba20e19c574f8bb2f2c26d281ddb1 Django-1.11.18.tar.gz +261206d5ab01123f7edfe8954ad486035fa5983d Django-1.11.18-py2.py3-none-any.whl SHA256 checksums ================ -f1a961b954d96bb24b397db4c35e9a128d12e044d6b57984c122282b592d508d Django-1.11.17-py2.py3-none-any.whl -a787ee66f4b4cf8ed753661cabcec603989677fa3a107fcb7f15511a44bdb483 Django-1.11.17.tar.gz +73cca1dac154e749b39cc91a54dc876109eb0512a5c6804986495305047066a5 Django-1.11.18.tar.gz +7ee7d93d407f082e3849c8d10da50ff5b488af37ed1b0066a22dee5f2709ed16 Django-1.11.18-py2.py3-none-any.whl -----BEGIN PGP SIGNATURE----- -iQIzBAEBCAAdFiEE/l+2OHah1xioxnVW4X31yCtPnQAFAlwFRZMACgkQ4X31yCtP -nQCk2g//Q1gGMNyw2BZ+GVbIZP7KQcKRNVLO9zhQwShEjKXIeRS0UyE0L0hemWU7 -jwoVIbrI9VeXa92mwxBr9kYU9S23hlkRX2vt/SqU2nAIAAd8hWIJaVDItNo7ZriG -IJVy1am0ukKSHl1wm9exRjJsfPWpoIrT/jCoSbpQXp/HIJqwPj4vlywGbSetj0Fs -bUAml7f6XrjFXXf3h7t/guaMflcL4MEoBHJTjc/PtgOWmnuQt20Ireoz6bpEKb76 -D3yO+s+3wJNuVMpbSh3NT63LoAlJJ1O+2G6VqO/7EvulwTgS4nXV6rr1JmE7MW0I -3RO6NoyeLiocpWOmFTIyb3wjlqBCzW7HSCbFuRWWgBAG1V9aeBjvrtvIu32R+dit -+GJ3jFB6e7F+6EG/TQMaZXMdwWG+mwz4LpIup63MRi3Ikpnl72c88YXltLKXVqCB -3M5mNxoaX6Wn8utSzGI8fKHfp63Zk7aovEp1ez0RWqbE/mKSZ4JZtJHTtofh1n0B -cZHiRcTNftyIqr4HZthU754+QYDf8xs3cbeEegZ5JGDH7Ou02IfXThtweznNm9vZ -b/Jd6ccj+Hl59SYSma4OBSTXBgnKL9fW8Rotjis/UhRFquU+nlx4xgxE4Jy5n2mH -Leo4WNsP+VA9rwBtlF/XacZGeET9Rv0BqnRGqMoZvGGBjh0dgs4= -=RAED +iQIzBAEBCAAdFiEENS9UlZg+ZfEFUeKFHoq9x3Pt4lIFAlwvaKoACgkQHoq9x3Pt +4lKfhQ//X/PKG8v4lFPHh97bq5rHFKIaFYxu4/EFYnkFuA71bfp4OgzYA9M1TE+E +8K0eGoFrWXSoMHFlopbPsa0RuUoXYwNHJ0ekCD/Q3UkF5jBznDph7WO/8DrcaRXO +LnrhWVTAa9ekTiP9ivn+K+Tu+UIhtnZGVPU+BmoLqKQ6vDIbvnWdPWzp7Y4QbSBI +sQyfijsEbc9qAUzMwNL9XSzgCuzgJHvTSxHu5k9Xi+Cc/nF827URX8Xl0m66hJwf +6APB++L17Ij8F4Bt0GoFnuI6bBgoRWin+UABlbUQew5IH5cFetSeR+q3wI6MR4Qu +LTINMhrQHE3SIZnk86pSttRtA+9UIAiuZREi/JoxNHjzsbfRggqpOZCJz2a/WXz5 +F4PdhUfC6oRNj/vcxNtB5Mu84fbyJuxHeXd35h/QJv2+WT/RFP4UWnPJhJ79gyMg +t0UzB94hdsXXzLS+iV0QawGpLlideWMXHGisIgjD5QUwXvMr4b9BNZAKoy6dJ5n2 +1nqKt9HbU+oSB2rLvG2g1oFyqkChHNycAdp76bTRxjO1YmnqQjqttp8Ru6Np51Cv +wWQrOJIEgScIfjRJlIpbfUYvxGqwqEVcG1IvAL+Ofn5BRR6ywE5lxaD9BMoGb3Tz +8ktCpTL7jw/OTPCGCThsRHqxYNgpmraygAluakwF9mfE9sqR2TY= +=B8lP -----END PGP SIGNATURE-----