commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2020-02-06 13:19:24 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.26092 (New) Package is "python-Django1" Thu Feb 6 13:19:24 2020 rev:20 rq:769934 version:1.11.28 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2020-01-16 18:16:57.056829216 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.26092/python-Django1.changes 2020-02-06 13:19:31.252680937 +0100 @@ -1,0 +2,7 @@ +Tue Feb 4 10:00:42 UTC 2020 - Ondřej Súkup + +- update to 1.11.28 +- drop pyyaml53.patch + * fix boo#1161919 (CVE-2020-7471) Potential SQL injection via StringAgg(delimiter) + +--- Old: Django-1.11.27.tar.gz Django-1.11.27.tar.gz.asc pyyaml53.patch New: Django-1.11.28.tar.gz Django-1.11.28.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.gh4eX2/_old 2020-02-06 13:19:32.180681393 +0100 +++ /var/tmp/diff_new_pack.gh4eX2/_new 2020-02-06 13:19:32.184681394 +0100 @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.27 +Version:1.11.28 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause @@ -35,7 +35,6 @@ Patch0: django-sqlite-326.patch # PATCH-FIX-OPENSUSE bmwiedemann -- fix tests after 2028 - merged in Django master only Patch2: fix2028.patch -Patch3: pyyaml53.patch BuildRequires: %{python_module Jinja2 >= 2.9.2} BuildRequires: %{python_module Pillow} BuildRequires: %{python_module PyYAML} @@ -94,7 +93,6 @@ %setup -q -n Django-%{version} %patch0 -p1 %patch2 -p1 -%patch3 -p1 %build %python_build ++ Django-1.11.27.tar.gz -> Django-1.11.28.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.27.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.26092/Django-1.11.28.tar.gz differ: char 5, line 1 ++ Django-1.11.27.tar.gz.asc -> Django-1.11.28.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.27.tar.gz.asc 2019-12-30 12:34:11.915784130 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.26092/Django-1.11.28.tar.gz.asc 2020-02-06 13:19:30.844680737 +0100 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.27, released December 18, 2019. +tarball and wheel files of Django 1.11.28, released February 3, 2020. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``2EF56372BA48CD1B`` and can be imported from the MIT +the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key 2EF56372BA48CD1B +gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 Once the key is imported, verify this file:: @@ -24,40 +24,39 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.27-py2.py3-none-any.whl -https://www.djangoproject.com/m/releases/1.11/Django-1.11.27.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.28-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.28.tar.gz MD5 checksums = -f18cd55578581166080cc7e04dd626cc Django-1.11.27-py2.py3-none-any.whl -e75626654c7d92ff8bafa2a36d137372 Django-1.11.27.tar.gz +103fe7af9f88d6c621026b8f9d284d1b Django-1.11.28-py2.py3-none-any.whl +8a21a5148aece7f6110d6ff3a9f57652 Django-1.11.28.tar.gz SHA1 checksums == -9df8b56e56bd2c29cd5f13b92b5a0b3aabacda1b Django-1.11.27-py2.py3-none-any.whl -8f0ad184cbae6e69dbe2a1f4d7ec32d842657001 Django-1.11.27.tar.gz +5a6260681cbd4c0493637fb04e3d3aeaf27c2429 Django-1.11.28-py2.py3-none-any.whl +1537a67692f9f724d005631cc035d9a58648934a Django-1.11.28.tar.gz SHA256 checksums -372faee5b93c92f19e9d65f52b278a1b689d3e3b4a7d9d30db73a78ebc729770 Django-1.11.27-py2.py3-none-any.whl -20111383869ad1b11400c94b0c19d4ab12975316cd058eabd17452e0546169b8 Django-1.11.27.tar.gz +a3b01cdff845a43830d7ccacff55e0b8ff08305a4cbf894517a686e53ba3ad2d Django-1.11.28-py2.py3-none-any.whl +b33ce35f47f745fea6b5aa3cf3f4241069803a3712d423ac748bd673a39741eb Django-1.11.28.tar.gz -BEGIN PGP SIGNATURE- -iQJPBAEBCAA5FiEEq7LCqM0B8WE2GLcNLvVjcrpIzRs
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2020-01-16 18:16:53 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.26092 (New) Package is "python-Django1" Thu Jan 16 18:16:53 2020 rev:19 rq:764709 version:1.11.27 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-12-30 12:34:12.983784733 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.26092/python-Django1.changes 2020-01-16 18:16:57.056829216 +0100 @@ -1,0 +2,5 @@ +Wed Jan 15 14:55:09 UTC 2020 - Ondřej Súkup + +- add pyyaml53.patch - fix tests with new PyYAML 5.3 + +--- New: pyyaml53.patch Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.DIUV1w/_old 2020-01-16 18:16:58.804830204 +0100 +++ /var/tmp/diff_new_pack.DIUV1w/_new 2020-01-16 18:16:58.804830204 +0100 @@ -1,7 +1,7 @@ # # spec file for package python-Django1 # -# Copyright (c) 2019 SUSE LLC +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -35,6 +35,7 @@ Patch0: django-sqlite-326.patch # PATCH-FIX-OPENSUSE bmwiedemann -- fix tests after 2028 - merged in Django master only Patch2: fix2028.patch +Patch3: pyyaml53.patch BuildRequires: %{python_module Jinja2 >= 2.9.2} BuildRequires: %{python_module Pillow} BuildRequires: %{python_module PyYAML} @@ -93,6 +94,7 @@ %setup -q -n Django-%{version} %patch0 -p1 %patch2 -p1 +%patch3 -p1 %build %python_build ++ pyyaml53.patch ++ >From 4a6824e450e15aeb3558ba80b1b314e33a6e7b0b Mon Sep 17 00:00:00 2001 From: Mariusz Felisiak Date: Tue, 7 Jan 2020 08:59:22 +0100 Subject: [PATCH] Fixed timezones tests for PyYAML 5.3+. --- tests/timezones/tests.py | 28 ++-- 1 file changed, 22 insertions(+), 6 deletions(-) Index: Django-1.11.27/tests/timezones/tests.py === --- Django-1.11.27.orig/tests/timezones/tests.py +++ Django-1.11.27/tests/timezones/tests.py @@ -36,6 +36,12 @@ from .models import ( AllDayEvent, Event, MaybeEvent, Session, SessionEvent, Timestamp, ) +try: +import yaml +HAS_YAML = True +except ImportError: +HAS_YAML = False + # These tests use the EAT (Eastern Africa Time) and ICT (Indochina Time) # who don't have Daylight Saving Time, so we can represent them easily # with FixedOffset, and use them directly as tzinfo in the constructors. @@ -662,9 +668,10 @@ class SerializationTests(SimpleTestCase) # Backend-specific notes: # - JSON supports only milliseconds, microseconds will be truncated. -# - PyYAML dumps the UTC offset correctly for timezone-aware datetimes, -# but when it loads this representation, it subtracts the offset and -# returns a naive datetime object in UTC. See ticket #18867. +# - PyYAML dumps the UTC offset correctly for timezone-aware datetimes. +# When PyYAML < 5.3 loads this representation, it subtracts the offset +# and returns a naive datetime object in UTC. PyYAML 5.3+ loads timezones +# correctly. # Tests are adapted to take these quirks into account. def assert_python_contains_datetime(self, objects, dt): @@ -751,7 +758,10 @@ class SerializationTests(SimpleTestCase) data = serializers.serialize('yaml', [Event(dt=dt)], default_flow_style=None) self.assert_yaml_contains_datetime(data, "2011-09-01 17:20:30.405060+07:00") obj = next(serializers.deserialize('yaml', data)).object -self.assertEqual(obj.dt.replace(tzinfo=UTC), dt) +if HAS_YAML and yaml.__version__ < '5.3': +self.assertEqual(obj.dt.replace(tzinfo=UTC), dt) +else: +self.assertEqual(obj.dt, dt) def test_aware_datetime_in_utc(self): dt = datetime.datetime(2011, 9, 1, 10, 20, 30, tzinfo=UTC) @@ -799,7 +809,10 @@ class SerializationTests(SimpleTestCase) data = serializers.serialize('yaml', [Event(dt=dt)], default_flow_style=None) self.assert_yaml_contains_datetime(data, "2011-09-01 13:20:30+03:00") obj = next(serializers.deserialize('yaml', data)).object -self.assertEqual(obj.dt.replace(tzinfo=UTC), dt) +if HAS_YAML and yaml.__version__ < '5.3': +self.assertEqual(obj.dt.replace(tzinfo=UTC), dt) +else: +self.assertEqual(obj.dt, dt) def test_aware_datetime_in_other
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-12-30 12:34:07 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.6675 (New) Package is "python-Django1" Mon Dec 30 12:34:07 2019 rev:18 rq:759884 version:1.11.27 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-11-18 20:06:25.477712403 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.6675/python-Django1.changes 2019-12-30 12:34:12.983784733 +0100 @@ -1,0 +2,7 @@ +Sun Dec 29 11:00:47 UTC 2019 - Ondřej Súkup + +- Update to 1.11.27 + * CVE-2019-19844: Potential account hijack via password reset form (bsc#1159447) + * Fixed a data loss possibility in SplitArrayField. + +--- Old: Django-1.11.26.tar.gz Django-1.11.26.tar.gz.asc New: Django-1.11.27.tar.gz Django-1.11.27.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.KoaFVr/_old 2019-12-30 12:34:14.915785770 +0100 +++ /var/tmp/diff_new_pack.KoaFVr/_new 2019-12-30 12:34:14.919785772 +0100 @@ -1,7 +1,7 @@ # # spec file for package python-Django1 # -# Copyright (c) 2019 SUSE LLC. +# Copyright (c) 2019 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.26 +Version:1.11.27 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.26.tar.gz -> Django-1.11.27.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.26.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.6675/Django-1.11.27.tar.gz differ: char 5, line 1 ++ Django-1.11.26.tar.gz.asc -> Django-1.11.27.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.26.tar.gz.asc 2019-11-18 20:06:25.257712514 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.6675/Django-1.11.27.tar.gz.asc 2019-12-30 12:34:11.915784130 +0100 @@ -2,7 +2,7 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.26, released November 4, 2019. +tarball and wheel files of Django 1.11.27, released December 18, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have @@ -24,40 +24,40 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.26-py2.py3-none-any.whl -https://www.djangoproject.com/m/releases/1.11/Django-1.11.26.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.27-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.27.tar.gz MD5 checksums = -dcba8ced9c278e6ddeca667ad4b806ea Django-1.11.26-py2.py3-none-any.whl -858e5417a10ce565a15d6e4a2ea0ee37 Django-1.11.26.tar.gz +f18cd55578581166080cc7e04dd626cc Django-1.11.27-py2.py3-none-any.whl +e75626654c7d92ff8bafa2a36d137372 Django-1.11.27.tar.gz SHA1 checksums == -aeb7f8c232cde3b8dad097f727bd5501b49f362f Django-1.11.26-py2.py3-none-any.whl -34df353272f025e961288377aac1f51b05781147 Django-1.11.26.tar.gz +9df8b56e56bd2c29cd5f13b92b5a0b3aabacda1b Django-1.11.27-py2.py3-none-any.whl +8f0ad184cbae6e69dbe2a1f4d7ec32d842657001 Django-1.11.27.tar.gz SHA256 checksums -83615ecf738ed710e90ca0dff719b269cc93128c5f0f361370d4e52f42209d16 Django-1.11.26-py2.py3-none-any.whl -861db7f82436ab43e1411832ed8dca81fc5fc0f7c2039c7e07a080a63092fb44 Django-1.11.26.tar.gz +372faee5b93c92f19e9d65f52b278a1b689d3e3b4a7d9d30db73a78ebc729770 Django-1.11.27-py2.py3-none-any.whl +20111383869ad1b11400c94b0c19d4ab12975316cd058eabd17452e0546169b8 Django-1.11.27.tar.gz -BEGIN PGP SIGNATURE- -iQJPBAEBCAA5FiEEq7LCqM0B8WE2GLcNLvVjcrpIzRsFAl2/36sbHGZlbGlzaWFr -Lm1hcml1c3pAZ21haWwuY29tAAoJEC71Y3K6SM0bgfcQAJe/KPDVws643GyTh7hm -mqqgl8jwstkxzDUQ8frq0uGRlcBifNmn2ltgAQ9p0M32A1O5ghLTB8WkTQkUTxD5 -qLAboJm0dKF7EYTtkKJoalG+DUCeFIVuFtf6El4PgN1ZAtoaruzLhLfU3uKGSb91 -3WOaoHIXCT2Dip6+sLctH7n2qJjiUk9kpMfud3zeM3ulN6QtqMVTA0XA2T2VMplq -ifNsMUXkJGmT413tATKqGom1TEdVA++KX+P6zyAl+jpq5YHoBUZWDH6Q44iKoglp -H60uetms3y6dYnDpqUjimkZoPGsbCX9/80yRxs8DplBkW5PzSYVlPVpbLffoLQpG -x4EEj6WXRaMByCQ9s/OIQKCZ7FYTL2m+tCDiL9Rg5atNipA6mSvUPa5X2jU6qdND -3SGH570fbPkaTII4TwIos9cfvNj4HXQ/7Os1whh9s2BUvToiLQZgbldwYdtcEOrI -4s3PQbrzcC7LSaLd3vCtUQwbJ6iGsVauojcWbl1vY/1/mgeFyhMTosuCIQr1/vqo -sv8xxiJC4n1Dkq8
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-11-18 20:06:20 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.26869 (New) Package is "python-Django1" Mon Nov 18 20:06:20 2019 rev:17 rq:748858 version:1.11.26 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-11-04 17:03:45.768091674 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.26869/python-Django1.changes 2019-11-18 20:06:25.477712403 +0100 @@ -1,0 +2,8 @@ +Fri Nov 15 10:54:06 UTC 2019 - Tomáš Chvátal + +- Update to 1.11.26: + * Fixed a crash when using a contains, contained_by, has_key, +has_keys, or has_any_keys lookup on JSONField, if the right +or left hand side of an expression is a key transform (#30826). + +--- Old: Django-1.11.25.tar.gz Django-1.11.25.tar.gz.asc New: Django-1.11.26.tar.gz Django-1.11.26.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.7Hciu2/_old 2019-11-18 20:06:26.881711699 +0100 +++ /var/tmp/diff_new_pack.7Hciu2/_new 2019-11-18 20:06:26.893711693 +0100 @@ -1,7 +1,7 @@ # # spec file for package python-Django1 # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LLC. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.25 +Version:1.11.26 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.25.tar.gz -> Django-1.11.26.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.25.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.26869/Django-1.11.26.tar.gz differ: char 5, line 1 ++ Django-1.11.25.tar.gz.asc -> Django-1.11.26.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.25.tar.gz.asc 2019-11-04 17:03:45.748091653 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.26869/Django-1.11.26.tar.gz.asc 2019-11-18 20:06:25.257712514 +0100 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.25, released October 1, 2019. +tarball and wheel files of Django 1.11.26, released November 4, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT +the ID ``2EF56372BA48CD1B`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 +gpg --keyserver pgp.mit.edu --recv-key 2EF56372BA48CD1B Once the key is imported, verify this file:: @@ -24,39 +24,40 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.25.tar.gz -https://www.djangoproject.com/m/releases/1.11/Django-1.11.25-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.26-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.26.tar.gz MD5 checksums = -48f8657c570e39adab89e7cd09699c67 Django-1.11.25.tar.gz -885c067d43c1a2e9191712882b6e7ef0 Django-1.11.25-py2.py3-none-any.whl +dcba8ced9c278e6ddeca667ad4b806ea Django-1.11.26-py2.py3-none-any.whl +858e5417a10ce565a15d6e4a2ea0ee37 Django-1.11.26.tar.gz SHA1 checksums == -b5b8994c8300aa8c0107ae8a33962ebd923ba7a7 Django-1.11.25.tar.gz -403c79eb51e4c991c9d45175fb3c8ddc2aaab4a7 Django-1.11.25-py2.py3-none-any.whl +aeb7f8c232cde3b8dad097f727bd5501b49f362f Django-1.11.26-py2.py3-none-any.whl +34df353272f025e961288377aac1f51b05781147 Django-1.11.26.tar.gz SHA256 checksums -5314e8586285d532b7aa5c6d763b0248d9a977a37efec86d30f0212b82e8ef66 Django-1.11.25.tar.gz -2f31cdaaeffdb1728614c4ede5f7101c5770aa90b471c1299d4a203bf00f3b05 Django-1.11.25-py2.py3-none-any.whl +83615ecf738ed710e90ca0dff719b269cc93128c5f0f361370d4e52f42209d16 Django-1.11.26-py2.py3-none-any.whl +861db7f82436ab43e1411832ed8dca81fc5fc0f7c2039c7e07a080a63092fb44 Django-1.11.26.tar.gz -BEGIN PGP SIGNATURE- -iQIzBAEBCAAdFiEE/l+2OHah1xioxnVW4X31yCtPnQAFAl2TCFEACgkQ4X31yCtP -nQCM/A/+Njb5ic/MEUyuMsAvZ/fhGf0gcqTsedQwnSHkBB2Ln/Zei4aL
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-11-04 17:03:44 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.2990 (New) Package is "python-Django1" Mon Nov 4 17:03:44 2019 rev:16 rq:735853 version:1.11.25 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-09-23 12:17:53.629802011 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.2990/python-Django1.changes 2019-11-04 17:03:45.768091674 +0100 @@ -1,0 +2,7 @@ +Mon Oct 7 13:14:53 UTC 2019 - Tomáš Chvátal + +- Update to 1.11.25: + * Fixed a crash when filtering with a Subquery() annotation of +a queryset containing JSONField or HStoreField (#30769). + +--- Old: Django-1.11.24.tar.gz Django-1.11.24.tar.gz.asc New: Django-1.11.25.tar.gz Django-1.11.25.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.U0EuBK/_old 2019-11-04 17:03:47.044093037 +0100 +++ /var/tmp/diff_new_pack.U0EuBK/_new 2019-11-04 17:03:47.048093041 +0100 @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.24 +Version:1.11.25 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.24.tar.gz -> Django-1.11.25.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.24.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.2990/Django-1.11.25.tar.gz differ: char 5, line 1 ++ Django-1.11.24.tar.gz.asc -> Django-1.11.25.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.24.tar.gz.asc 2019-09-23 12:17:53.613802013 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.2990/Django-1.11.25.tar.gz.asc 2019-11-04 17:03:45.748091653 +0100 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.24, released September 2, 2019. +tarball and wheel files of Django 1.11.25, released October 1, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``2EF56372BA48CD1B`` and can be imported from the MIT +the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key 2EF56372BA48CD1B +gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 Once the key is imported, verify this file:: @@ -24,40 +24,39 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.24-py2.py3-none-any.whl -https://www.djangoproject.com/m/releases/1.11/Django-1.11.24.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.25.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.25-py2.py3-none-any.whl MD5 checksums = -f4a9dc38b1a82d1387fe64705092db14 Django-1.11.24-py2.py3-none-any.whl -e5aec60146bf7c4d929d54a0dedb8e56 Django-1.11.24.tar.gz +48f8657c570e39adab89e7cd09699c67 Django-1.11.25.tar.gz +885c067d43c1a2e9191712882b6e7ef0 Django-1.11.25-py2.py3-none-any.whl SHA1 checksums == -6d2ef66eade0b7353c9ccf56fb12629b047c56cf Django-1.11.24-py2.py3-none-any.whl -79faa06f593be29b95a025a5cf55e11a37f2cb57 Django-1.11.24.tar.gz +b5b8994c8300aa8c0107ae8a33962ebd923ba7a7 Django-1.11.25.tar.gz +403c79eb51e4c991c9d45175fb3c8ddc2aaab4a7 Django-1.11.25-py2.py3-none-any.whl SHA256 checksums -ffd89b89a2ee860ee521f054225044f52676825be4b61168d2842d44fcf457d3 Django-1.11.24-py2.py3-none-any.whl -215c27453f775b6b1add83a185f76c2e2ab711d17786a6704bd62eabd93f89e3 Django-1.11.24.tar.gz +5314e8586285d532b7aa5c6d763b0248d9a977a37efec86d30f0212b82e8ef66 Django-1.11.25.tar.gz +2f31cdaaeffdb1728614c4ede5f7101c5770aa90b471c1299d4a203bf00f3b05 Django-1.11.25-py2.py3-none-any.whl -BEGIN PGP SIGNATURE- -iQJPBAEBCAA5FiEEq7LCqM0B8WE2GLcNLvVjcrpIzRsFAl1suvAbHGZlbGlzaWFr -Lm1hcml1c3pAZ21haWwuY29tAAoJEC71Y3K6SM0b3NsP/Alab4cK8CvJvn2MP4TS -k65HfhHwf/VEkYt6waC6zuJOuVymrcMCPC6GANxTpePTtek53RG8fAuf5gcDKiIh -rZxf/pV+9sIn0wSWismL5ZcbPn9TU2p3/ynndNEvsqfepYSew/8wXh48O2v+OxRL -QS+C4i9RnitifEV++tEI7NQwO8cjQp6MsfiZkoVWq7Rgw/LzGzUW6K/OiuNbCt7f -DlBF96jYLr+rrm5Qef51mMsTx5D6L/r3skQA2M4Np1i2ghAwtQO+itnonDp+/LpP -5LGDxePudFQD0rU05l3Um4hQncKWRIfcN08FXoxOjJXbpgyDWpzpqQFWDrIN51dZ -5/yjarzfsmnFMvnL/r6GcLHf8hVz89RclWQyC5
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-09-23 12:17:52 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.7948 (New) Package is "python-Django1" Mon Sep 23 12:17:52 2019 rev:15 rq:731238 version:1.11.24 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-08-07 13:56:22.676856190 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.7948/python-Django1.changes 2019-09-23 12:17:53.629802011 +0200 @@ -1,0 +2,7 @@ +Mon Sep 16 10:10:34 UTC 2019 - Tomáš Chvátal + +- Update to 1.11.24: + * Fixed crash of KeyTransform() for JSONField and HStoreField when using +on expressions with params (#30672). + +--- Old: Django-1.11.23.tar.gz Django-1.11.23.tar.gz.asc New: Django-1.11.24.tar.gz Django-1.11.24.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.F7MxJZ/_old 2019-09-23 12:17:54.149801925 +0200 +++ /var/tmp/diff_new_pack.F7MxJZ/_new 2019-09-23 12:17:54.153801925 +0200 @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.23 +Version:1.11.24 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.23.tar.gz -> Django-1.11.24.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.23.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.7948/Django-1.11.24.tar.gz differ: char 5, line 1 ++ Django-1.11.23.tar.gz.asc -> Django-1.11.24.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.23.tar.gz.asc 2019-08-07 13:56:21.552856202 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.7948/Django-1.11.24.tar.gz.asc 2019-09-23 12:17:53.613802013 +0200 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.23, released August 1, 2019. +tarball and wheel files of Django 1.11.24, released September 2, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT +the ID ``2EF56372BA48CD1B`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 +gpg --keyserver pgp.mit.edu --recv-key 2EF56372BA48CD1B Once the key is imported, verify this file:: @@ -24,39 +24,40 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.23.tar.gz -https://www.djangoproject.com/m/releases/1.11/Django-1.11.23-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.24-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.24.tar.gz MD5 checksums = -ded95be58e57d0fa65b03e36b1566265 Django-1.11.23.tar.gz -f15b59e066032c23e28b2e86b9914a79 Django-1.11.23-py2.py3-none-any.whl +f4a9dc38b1a82d1387fe64705092db14 Django-1.11.24-py2.py3-none-any.whl +e5aec60146bf7c4d929d54a0dedb8e56 Django-1.11.24.tar.gz SHA1 checksums == -6127e40ed8daf85479c984d2d3757cdeed208c8f Django-1.11.23.tar.gz -374ffbdff147fceaf0ee484b282cde00042c1ca7 Django-1.11.23-py2.py3-none-any.whl +6d2ef66eade0b7353c9ccf56fb12629b047c56cf Django-1.11.24-py2.py3-none-any.whl +79faa06f593be29b95a025a5cf55e11a37f2cb57 Django-1.11.24.tar.gz SHA256 checksums -52a66d7f8b036d02da0a4472359e8be1727424fc1e4b4f5c684ef97de7b569e1 Django-1.11.23.tar.gz -c85b8c95366e187ca0581d45a6e508107ca4bd38cb45c24aa09d3572074c523d Django-1.11.23-py2.py3-none-any.whl +ffd89b89a2ee860ee521f054225044f52676825be4b61168d2842d44fcf457d3 Django-1.11.24-py2.py3-none-any.whl +215c27453f775b6b1add83a185f76c2e2ab711d17786a6704bd62eabd93f89e3 Django-1.11.24.tar.gz -BEGIN PGP SIGNATURE- -iQIzBAEBCAAdFiEE/l+2OHah1xioxnVW4X31yCtPnQAFAl1Cpo4ACgkQ4X31yCtP -nQB5uQ//YwfH6jQzUqQL6eKkGyo4fUb224XGJN+7u+tTatNfkeyDtBFKUvJyWpoY -DIaaTNVKiQvLdEcKpsEHBfJduqAulm5sH63a/GjhFmyeSa83WgPXzZREXzlYx7/c -n8ubydd/ziWF6R7ls7OC0jxzMMrZ5qEgeWSs/XcinD7pXdy6YRt7RiS1YgebPxB1 -L928LaAQjwKW+PVmc0vBqlit89l3zqRiKuGEKn9gSy/v2cwmAny80faBAWhihSp1 -u1tQen0/HVpiu2vTkKH9j/lyhI7535BV2iLAtzwipajdm1y1pWTAd9vGOqzJtT0b -SzewKpwdWyw2tFVG5pKNPxTiweHZh7Q2Fl+BycjFd9r9rXyjjyhA1leflFmNPhEO -gIDIcBGQ7p3+bhr1Ya85pjnp/qx1p9HuzDOpKP3boFQgpro4Z
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-08-07 13:56:16 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.9556 (New) Package is "python-Django1" Wed Aug 7 13:56:16 2019 rev:14 rq:720190 version:1.11.23 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-07-30 13:02:52.734420660 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.9556/python-Django1.changes 2019-08-07 13:56:22.676856190 +0200 @@ -1,0 +2,8 @@ +Thu Aug 1 11:15:29 UTC 2019 - Tomáš Chvátal + +- Update to 1.11.23: + * CVE-2019-14232 CVE-2019-14233 CVE-2019-14234 CVE-2019-14235 +bsc#1142883 bsc#1142885 bsc#1142882 bsc#1142880 + * Just security fixes + +--- Old: Django-1.11.22.tar.gz Django-1.11.22.tar.gz.asc New: Django-1.11.23.tar.gz Django-1.11.23.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.Pfiq8Y/_old 2019-08-07 13:56:25.692856157 +0200 +++ /var/tmp/diff_new_pack.Pfiq8Y/_new 2019-08-07 13:56:25.692856157 +0200 @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.22 +Version:1.11.23 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.22.tar.gz -> Django-1.11.23.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.22.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.9556/Django-1.11.23.tar.gz differ: char 5, line 1 ++ Django-1.11.22.tar.gz.asc -> Django-1.11.23.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.22.tar.gz.asc 2019-07-30 13:02:52.694420668 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.9556/Django-1.11.23.tar.gz.asc 2019-08-07 13:56:21.552856202 +0200 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.22, released July 1, 2019. +tarball and wheel files of Django 1.11.23, released August 1, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``2EF56372BA48CD1B`` and can be imported from the MIT +the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key 2EF56372BA48CD1B +gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 Once the key is imported, verify this file:: @@ -24,40 +24,39 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.22.tar.gz -https://www.djangoproject.com/m/releases/1.11/Django-1.11.22-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.23.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.23-py2.py3-none-any.whl MD5 checksums = -d3a20b27a0cfb562bac46a06605b29af Django-1.11.22.tar.gz -53b7bb6b6257f71772301cd3c500b5b8 Django-1.11.22-py2.py3-none-any.whl +ded95be58e57d0fa65b03e36b1566265 Django-1.11.23.tar.gz +f15b59e066032c23e28b2e86b9914a79 Django-1.11.23-py2.py3-none-any.whl SHA1 checksums == -450a784b288c6ec89a8fedebeeb9c4a2746f3243 Django-1.11.22.tar.gz -c2c8fbcc30f6cbe1db212522dfe64d3f7fcd345f Django-1.11.22-py2.py3-none-any.whl +6127e40ed8daf85479c984d2d3757cdeed208c8f Django-1.11.23.tar.gz +374ffbdff147fceaf0ee484b282cde00042c1ca7 Django-1.11.23-py2.py3-none-any.whl SHA256 checksums -830d5d40a1705089502bba70605ab3246831440ffc16d1501dfeeef5f4b9c845 Django-1.11.22.tar.gz -94395804ad80f68d66090a74d68ff2583b4e1785a026c2aa10cf161642a6 Django-1.11.22-py2.py3-none-any.whl +52a66d7f8b036d02da0a4472359e8be1727424fc1e4b4f5c684ef97de7b569e1 Django-1.11.23.tar.gz +c85b8c95366e187ca0581d45a6e508107ca4bd38cb45c24aa09d3572074c523d Django-1.11.23-py2.py3-none-any.whl -BEGIN PGP SIGNATURE- -iQJPBAEBCAA5FiEEq7LCqM0B8WE2GLcNLvVjcrpIzRsFAl0Zq/4bHGZlbGlzaWFr -Lm1hcml1c3pAZ21haWwuY29tAAoJEC71Y3K6SM0bsF4QAJACq165LWrgfoo/++9h -couJpnH4pebzBcydy9BTtdG3OleLQMYIbiG7hbEuK7Xvywgz/jWM1rdqBgg8xxmA -d4Hy+iug6EPlFicjRAGxP7xQZ3cda0WUQx6zd0jpLWvWyqpc3LKWaw+c1sruetiZ -oFOvhbkZVfnqpFfX2FBsfCRog8uHcf9LFEHqFjDOLmuEYdro1hZE9hWGUiDtqN2k -nc5i+rtPwEp1my6S7BblD1x7GoRibFEBnDP05/zJRZIad+mAr9pYTLOi4tZCmr3r -TFZRR59ayEKyK3iasKTyjR1lJi1EYVPuPLzQo7nPdGztt6NONWoFNSOccldptkqN -rUQg/hFh01a2qZmvIWWY/gnqWGjxk
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-07-30 13:02:49 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.4126 (New) Package is "python-Django1" Tue Jul 30 13:02:49 2019 rev:13 rq:717077 version:1.11.22 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-06-05 11:38:08.963086216 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.4126/python-Django1.changes 2019-07-30 13:02:52.734420660 +0200 @@ -1,0 +2,6 @@ +Fri Jul 19 11:56:00 UTC 2019 - Tomáš Chvátal + +- Update to 1.11.22: + * CVE-2019-12781 (bsc#1139945): Incorrect HTTP detection with reverse-proxy connecting via HTTPS + +--- Old: Django-1.11.21.tar.gz Django-1.11.21.tar.gz.asc New: Django-1.11.22.tar.gz Django-1.11.22.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.j1gQm0/_old 2019-07-30 13:02:54.386420327 +0200 +++ /var/tmp/diff_new_pack.j1gQm0/_new 2019-07-30 13:02:54.390420327 +0200 @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.21 +Version:1.11.22 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.21.tar.gz -> Django-1.11.22.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.21.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.4126/Django-1.11.22.tar.gz differ: char 5, line 1 ++ Django-1.11.21.tar.gz.asc -> Django-1.11.22.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.21.tar.gz.asc 2019-06-05 11:38:08.931086220 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.4126/Django-1.11.22.tar.gz.asc 2019-07-30 13:02:52.694420668 +0200 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.21, released June 3, 2019. +tarball and wheel files of Django 1.11.22, released July 1, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT +the ID ``2EF56372BA48CD1B`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 +gpg --keyserver pgp.mit.edu --recv-key 2EF56372BA48CD1B Once the key is imported, verify this file:: @@ -24,39 +24,40 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.21.tar.gz -https://www.djangoproject.com/m/releases/1.11/Django-1.11.21-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.22.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.22-py2.py3-none-any.whl MD5 checksums = -9a659a9dd9f5900fe75c7fbc4ce1b6a3 Django-1.11.21.tar.gz -7d3c49ebed0c18280675b879b57d75bc Django-1.11.21-py2.py3-none-any.whl +d3a20b27a0cfb562bac46a06605b29af Django-1.11.22.tar.gz +53b7bb6b6257f71772301cd3c500b5b8 Django-1.11.22-py2.py3-none-any.whl SHA1 checksums == -2b2f2c26835c641ccc313bd5330418237e587741 Django-1.11.21.tar.gz -9e4f4e2d2bc844b8a717640daad8a833b8823b73 Django-1.11.21-py2.py3-none-any.whl +450a784b288c6ec89a8fedebeeb9c4a2746f3243 Django-1.11.22.tar.gz +c2c8fbcc30f6cbe1db212522dfe64d3f7fcd345f Django-1.11.22-py2.py3-none-any.whl SHA256 checksums -ba723e524facffa2a9d8c2e9116db871e16b9207e648e1d3e4af8aae1167b029 Django-1.11.21.tar.gz -aae1b776d78cc3f492afda405b9b9d322b27761442997456c158687d7a0610a1 Django-1.11.21-py2.py3-none-any.whl +830d5d40a1705089502bba70605ab3246831440ffc16d1501dfeeef5f4b9c845 Django-1.11.22.tar.gz +94395804ad80f68d66090a74d68ff2583b4e1785a026c2aa10cf161642a6 Django-1.11.22-py2.py3-none-any.whl -BEGIN PGP SIGNATURE- -iQIzBAEBCAAdFiEE/l+2OHah1xioxnVW4X31yCtPnQAFAlz07WoACgkQ4X31yCtP -nQAfcBAApaL54HTEn8xoZCTqhUuhWM20YC+9yA/hU53FBN4KqdxpIgIUfQFZf0Rx -1xjQjfB5eJQRn63KfGf9WEMIHHg/DVkDli2KTVXn9QjfYD4BQpq5/ZYEzDXQTf6w -Ceo4GcutlO6b3dqODqS4uDPKh7t73s4PDsOEH1E0vB6D2Q13FPrZjKhz6mtHN6IG -ChH06sjzffmvLkZRw6ApIrPAripHgvtld1TO9W87IW2K6KR6qMLLbQEm9zJ5xBXE -fFd4P5XVc921mhGt9Uk428wJqXTY9yhzp8rzHSp8txH9RQZvgG/C363Z3dK4hJLp -4xCeKGaXEJAf47i85jeS8Z2a9DcoLTkbUuJ10KRyoKUlyThxmCwDUXJ4D0pcfh0B -htaWIFPHuwkUULh6pYweZax5CXiCsuuJbzE1XQt0wfv9epaL19HDKT5t8N/9XMV8 -Dg8VdO1
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-06-05 11:38:07 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.5148 (New) Package is "python-Django1" Wed Jun 5 11:38:07 2019 rev:12 rq:707130 version:1.11.21 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-04-05 11:55:04.750264404 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.5148/python-Django1.changes 2019-06-05 11:38:08.963086216 +0200 @@ -1,0 +2,7 @@ +Mon Jun 3 10:30:28 UTC 2019 - Ondřej Súkup + +- update to 1.11.21 + * fix bnc#1136468 - CVE-2019-12308: AdminURLFieldWidget XSS + - drop pyyaml5.patch + +--- Old: Django-1.11.20.tar.gz Django-1.11.20.tar.gz.asc pyyaml5.patch New: Django-1.11.21.tar.gz Django-1.11.21.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.SgcKme/_old 2019-06-05 11:38:09.579086137 +0200 +++ /var/tmp/diff_new_pack.SgcKme/_new 2019-06-05 11:38:09.583086136 +0200 @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.20 +Version:1.11.21 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause @@ -33,7 +33,6 @@ Source2:%{name}.keyring Source99: python-Django1-rpmlintrc Patch0: django-sqlite-326.patch -Patch1: pyyaml5.patch # PATCH-FIX-OPENSUSE bmwiedemann -- fix tests after 2028 - merged in Django master only Patch2: fix2028.patch BuildRequires: %{python_module Jinja2 >= 2.9.2} @@ -93,7 +92,6 @@ %setup -q -n Django-%{version} %patch0 -p1 -%patch1 -p1 %patch2 -p1 %build ++ Django-1.11.20.tar.gz -> Django-1.11.21.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.20.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.5148/Django-1.11.21.tar.gz differ: char 5, line 1 ++ Django-1.11.20.tar.gz.asc -> Django-1.11.21.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.20.tar.gz.asc 2019-03-01 16:46:50.337812423 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.5148/Django-1.11.21.tar.gz.asc 2019-06-05 11:38:08.931086220 +0200 @@ -2,7 +2,7 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.20, released February 11, 2019. +tarball and wheel files of Django 1.11.21, released June 3, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have @@ -24,39 +24,39 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.20.tar.gz -https://www.djangoproject.com/m/releases/1.11/Django-1.11.20-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.21.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.21-py2.py3-none-any.whl MD5 checksums = -096091c29c00f36cce4356054119b702 Django-1.11.20.tar.gz -f597fa6d128cda70649a2147819d2b5e Django-1.11.20-py2.py3-none-any.whl +9a659a9dd9f5900fe75c7fbc4ce1b6a3 Django-1.11.21.tar.gz +7d3c49ebed0c18280675b879b57d75bc Django-1.11.21-py2.py3-none-any.whl SHA1 checksums == -bad59a5672e6abe394ed03b9fd6d592d874bd750 Django-1.11.20.tar.gz -99e3161e6878168954996a7e36629721a1b004e4 Django-1.11.20-py2.py3-none-any.whl +2b2f2c26835c641ccc313bd5330418237e587741 Django-1.11.21.tar.gz +9e4f4e2d2bc844b8a717640daad8a833b8823b73 Django-1.11.21-py2.py3-none-any.whl SHA256 checksums -43a99da08fee329480d27860d68279945b7d8bf7b537388ee2c8938c709b2041 Django-1.11.20.tar.gz -0a73696e0ac71ee6177103df984f9c1e07cd297f080f8ec4dc7c6f3fb74395b5 Django-1.11.20-py2.py3-none-any.whl +ba723e524facffa2a9d8c2e9116db871e16b9207e648e1d3e4af8aae1167b029 Django-1.11.21.tar.gz +aae1b776d78cc3f492afda405b9b9d322b27761442997456c158687d7a0610a1 Django-1.11.21-py2.py3-none-any.whl -BEGIN PGP SIGNATURE- -iQIzBAEBCAAdFiEE/l+2OHah1xioxnVW4X31yCtPnQAFAlxhjUAACgkQ4X31yCtP -nQBssw/+OmYdygB5E8J8ski49ZkpQkQ8rKcWCleMNAu3FMt+SDXIpkHDw68kS4r7 -vwhGdEjeSUDtKPbKfONR/yHNGKJ+4z0H4P7SoMhKzBIifbfVPpohO2oSs0l/IFVm -HDI3qFiVoudlHHDQ5tYbAiE4YSGNhckuUV2dRpgAsYRnCRLvSks8t8pBhVnB0/B7 -SH8Jz7omu2mQoKnWx8x36gtuIYYnfWJLNlcQxbx2aPel6AhSikF2gkw5Ov9dwKx+ -Aovl/z0RhCeAJpTc8fscZN4FfJBNaqlR8KDp8Y8FrNOkCrMcJeguJA5r5TYE24om -iNLsQ6xXLfJEIGc8v8xaMDM66l006f+ziqBhGBJMbx5z3Lm59UKTXNtybb2naW0Y -Y7cY27wVytoucgpljunf0VRQSbtcas+lCJ0PsAjbHTG5YNQjnqevyClsk4cMOIa6 -mEGqT02jsFo2ZHPeFD9NSpa5kiiATx
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-04-05 11:55:03 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.3908 (New) Package is "python-Django1" Fri Apr 5 11:55:03 2019 rev:11 rq:690885 version:1.11.20 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-03-29 20:37:25.194638483 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.3908/python-Django1.changes 2019-04-05 11:55:04.750264404 +0200 @@ -1,0 +2,5 @@ +Tue Apr 2 12:23:32 UTC 2019 - Bernhard Wiedemann + +- Add fix2028.patch to make tests pass until 2038 + +--- New: fix2028.patch Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.4BqXQC/_old 2019-04-05 11:55:05.926265351 +0200 +++ /var/tmp/diff_new_pack.4BqXQC/_new 2019-04-05 11:55:05.930265355 +0200 @@ -34,6 +34,8 @@ Source99: python-Django1-rpmlintrc Patch0: django-sqlite-326.patch Patch1: pyyaml5.patch +# PATCH-FIX-OPENSUSE bmwiedemann -- fix tests after 2028 - merged in Django master only +Patch2: fix2028.patch BuildRequires: %{python_module Jinja2 >= 2.9.2} BuildRequires: %{python_module Pillow} BuildRequires: %{python_module PyYAML} @@ -92,6 +94,7 @@ %setup -q -n Django-%{version} %patch0 -p1 %patch1 -p1 +%patch2 -p1 %build %python_build ++ fix2028.patch ++ https://github.com/django/django/pull/10993 https://github.com/django/django/pull/10994 Author: Bernhard M. Wiedemann Date: Thu Feb 14 10:38:18 2019 +0100 Fix tests in 2028 staying in 2038 to not fail on 32-bit systems diff --git a/tests/requests/tests.py b/tests/requests/tests.py index 27dc439..407e4b8 100644 --- a/tests/requests/tests.py +++ b/tests/requests/tests.py @@ -243,12 +243,12 @@ class RequestsTests(SimpleTestCase): def test_far_expiration(self): "Cookie will expire when an distant expiration time is provided" response = HttpResponse() -response.set_cookie('datetime', expires=datetime(2028, 1, 1, 4, 5, 6)) +response.set_cookie('datetime', expires=datetime(2038, 1, 1, 4, 5, 6)) datetime_cookie = response.cookies['datetime'] self.assertIn( datetime_cookie['expires'], # assertIn accounts for slight time dependency (#23450) -('Sat, 01-Jan-2028 04:05:06 GMT', 'Sat, 01-Jan-2028 04:05:07 GMT') +('Fri, 01-Jan-2038 04:05:06 GMT', 'Fri, 01-Jan-2038 04:05:07 GMT') ) def test_max_age_expiration(self):
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-03-29 20:37:23 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.25356 (New) Package is "python-Django1" Fri Mar 29 20:37:23 2019 rev:10 rq:687915 version:1.11.20 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-03-01 16:46:50.409812396 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.25356/python-Django1.changes 2019-03-29 20:37:25.194638483 +0100 @@ -1,0 +2,13 @@ +Sat Mar 23 16:31:46 UTC 2019 - Tomáš Chvátal + +- Add patch to build with PyYAML >5: + * pyyaml5.patch + +--- +Mon Mar 18 15:50:32 UTC 2019 - Thomas Bechtold + +- Enable python3 build for python versions <= 3.7 + That's what in the support matrix from + https://docs.djangoproject.com/en/2.1/faq/install/#what-python-version-can-i-use-with-django + +--- New: pyyaml5.patch Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.qoZexE/_old 2019-03-29 20:37:26.298639098 +0100 +++ /var/tmp/diff_new_pack.qoZexE/_new 2019-03-29 20:37:26.302639100 +0100 @@ -18,7 +18,7 @@ %{?!python_module:%define python_module() python-%{**} python3-%{**}} %define oldpython python -%if %{python3_version_nodots} > 34 +%if %{python3_version_nodots} > 37 %define skip_python3 1 %endif Name: python-Django1 @@ -33,6 +33,7 @@ Source2:%{name}.keyring Source99: python-Django1-rpmlintrc Patch0: django-sqlite-326.patch +Patch1: pyyaml5.patch BuildRequires: %{python_module Jinja2 >= 2.9.2} BuildRequires: %{python_module Pillow} BuildRequires: %{python_module PyYAML} @@ -90,6 +91,7 @@ %setup -q -n Django-%{version} %patch0 -p1 +%patch1 -p1 %build %python_build ++ pyyaml5.patch ++ >From a57c783dd4e6dc73847081221827a1902eede88b Mon Sep 17 00:00:00 2001 From: Mariusz Felisiak Date: Wed, 13 Mar 2019 20:06:47 +0100 Subject: [PATCH] Fixed serializers tests for PyYAML 5.1+. --- tests/serializers/test_yaml.py | 4 +++- tests/timezones/tests.py | 12 ++-- 2 files changed, 9 insertions(+), 7 deletions(-) diff --git a/tests/serializers/test_yaml.py b/tests/serializers/test_yaml.py index e876597e9d04..dbcbd57003f4 100644 --- a/tests/serializers/test_yaml.py +++ b/tests/serializers/test_yaml.py @@ -115,7 +115,9 @@ class YamlSerializerTestCase(SerializersTestBase, TestCase): author: %(author_pk)s headline: Poker has no place on ESPN pub_date: 2006-06-16 11:00:00 -categories: [%(first_category_pk)s, %(second_category_pk)s] +categories:""" + ( +' [%(first_category_pk)s, %(second_category_pk)s]' if yaml.__version__ < '5.1' +else '\n- %(first_category_pk)s\n- %(second_category_pk)s') + """ meta_data: [] """ diff --git a/tests/timezones/tests.py b/tests/timezones/tests.py index e54b011c0426..7a63bac67000 100644 --- a/tests/timezones/tests.py +++ b/tests/timezones/tests.py @@ -643,7 +643,7 @@ def test_naive_datetime(self): self.assertEqual(obj.dt, dt) if not isinstance(serializers.get_serializer('yaml'), serializers.BadSerializer): -data = serializers.serialize('yaml', [Event(dt=dt)]) +data = serializers.serialize('yaml', [Event(dt=dt)], default_flow_style=None) self.assert_yaml_contains_datetime(data, "2011-09-01 13:20:30") obj = next(serializers.deserialize('yaml', data)).object self.assertEqual(obj.dt, dt) @@ -667,7 +667,7 @@ def test_naive_datetime_with_microsecond(self): self.assertEqual(obj.dt, dt) if not isinstance(serializers.get_serializer('yaml'), serializers.BadSerializer): -data = serializers.serialize('yaml', [Event(dt=dt)]) +data = serializers.serialize('yaml', [Event(dt=dt)], default_flow_style=None) self.assert_yaml_contains_datetime(data, "2011-09-01 13:20:30.405060") obj = next(serializers.deserialize('yaml', data)).object self.assertEqual(obj.dt, dt) @@ -691,7 +691,7 @@ def test_aware_datetime_with_microsecond(self): self.assertEqual(obj.dt, dt) if not isinstance(serializers.get_serializer('yaml'), serializers.BadSerializer): -data = serializers.serialize('yaml', [Event(dt=dt)]) +data = serializers.serialize('yaml', [Event(dt=dt)], default_flow_style=None) self.assert_yaml_contains_datetime(data, "2011-09-01 17:20:30.405060+07:00") obj = next(serializers.deser
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-03-01 16:46:47 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.28833 (New) Package is "python-Django1" Fri Mar 1 16:46:47 2019 rev:9 rq:678815 version:1.11.20 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-02-01 11:45:04.100575722 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.28833/python-Django1.changes 2019-03-01 16:46:50.409812396 +0100 @@ -1,0 +2,6 @@ +Mon Feb 25 08:24:50 UTC 2019 - Ondřej Súkup + +- Update to 1.11.20 + * fix boo#1124991 - CVE-2019-6975 + +--- Old: Django-1.11.18.tar.gz Django-1.11.18.tar.gz.asc New: Django-1.11.20.tar.gz Django-1.11.20.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.05eqAM/_old 2019-03-01 16:46:51.189812100 +0100 +++ /var/tmp/diff_new_pack.05eqAM/_new 2019-03-01 16:46:51.193812099 +0100 @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.18 +Version:1.11.20 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.18.tar.gz -> Django-1.11.20.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.18.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.28833/Django-1.11.20.tar.gz differ: char 5, line 1 ++ Django-1.11.18.tar.gz.asc -> Django-1.11.20.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.18.tar.gz.asc 2019-01-10 15:22:28.566384172 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.28833/Django-1.11.20.tar.gz.asc 2019-03-01 16:46:50.337812423 +0100 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.18, released January 4, 2019. +tarball and wheel files of Django 1.11.20, released February 11, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``1E8ABDC773EDE252`` and can be imported from the MIT +the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key 1E8ABDC773EDE252 +gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 Once the key is imported, verify this file:: @@ -24,39 +24,39 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.18.tar.gz -https://www.djangoproject.com/m/releases/1.11/Django-1.11.18-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.20.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.20-py2.py3-none-any.whl MD5 checksums = -ef734560a81a8c0eb535e7a46205bd72 Django-1.11.18.tar.gz -45315e6544510143dfcb066584447ecc Django-1.11.18-py2.py3-none-any.whl +096091c29c00f36cce4356054119b702 Django-1.11.20.tar.gz +f597fa6d128cda70649a2147819d2b5e Django-1.11.20-py2.py3-none-any.whl SHA1 checksums == -705d631e290ba20e19c574f8bb2f2c26d281ddb1 Django-1.11.18.tar.gz -261206d5ab01123f7edfe8954ad486035fa5983d Django-1.11.18-py2.py3-none-any.whl +bad59a5672e6abe394ed03b9fd6d592d874bd750 Django-1.11.20.tar.gz +99e3161e6878168954996a7e36629721a1b004e4 Django-1.11.20-py2.py3-none-any.whl SHA256 checksums -73cca1dac154e749b39cc91a54dc876109eb0512a5c6804986495305047066a5 Django-1.11.18.tar.gz -7ee7d93d407f082e3849c8d10da50ff5b488af37ed1b0066a22dee5f2709ed16 Django-1.11.18-py2.py3-none-any.whl +43a99da08fee329480d27860d68279945b7d8bf7b537388ee2c8938c709b2041 Django-1.11.20.tar.gz +0a73696e0ac71ee6177103df984f9c1e07cd297f080f8ec4dc7c6f3fb74395b5 Django-1.11.20-py2.py3-none-any.whl -BEGIN PGP SIGNATURE- -iQIzBAEBCAAdFiEENS9UlZg+ZfEFUeKFHoq9x3Pt4lIFAlwvaKoACgkQHoq9x3Pt -4lKfhQ//X/PKG8v4lFPHh97bq5rHFKIaFYxu4/EFYnkFuA71bfp4OgzYA9M1TE+E -8K0eGoFrWXSoMHFlopbPsa0RuUoXYwNHJ0ekCD/Q3UkF5jBznDph7WO/8DrcaRXO -LnrhWVTAa9ekTiP9ivn+K+Tu+UIhtnZGVPU+BmoLqKQ6vDIbvnWdPWzp7Y4QbSBI -sQyfijsEbc9qAUzMwNL9XSzgCuzgJHvTSxHu5k9Xi+Cc/nF827URX8Xl0m66hJwf -6APB++L17Ij8F4Bt0GoFnuI6bBgoRWin+UABlbUQew5IH5cFetSeR+q3wI6MR4Qu -LTINMhrQHE3SIZnk86pSttRtA+9UIAiuZREi/JoxNHjzsbfRggqpOZCJz2a/WXz5 -F4PdhUfC6oRNj/vcxNtB5Mu84fbyJuxHeXd35h/QJv2+WT/RFP4UWnPJhJ79gyMg -t0UzB94hdsXXzLS+iV0QawGpLlideWMXHGisIgjD5QUwXvMr4b9BNZAKoy6dJ5n2
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-02-01 11:45:02 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.28833 (New) Package is "python-Django1" Fri Feb 1 11:45:02 2019 rev:8 rq:669477 version:1.11.18 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2019-01-10 15:22:28.654384081 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.28833/python-Django1.changes 2019-02-01 11:45:04.100575722 +0100 @@ -1,0 +2,12 @@ +Tue Jan 29 09:08:11 UTC 2019 - Tomáš Chvátal + +- Enable tests like on regular django to detect regressions for + the python2 based variant too + +--- +Tue Jan 29 09:03:12 UTC 2019 - Tomáš Chvátal + +- Add patch to work well with sqlite 3.26 and newer: + * django-sqlite-326.patch + +--- @@ -4 +16 @@ -- Update to 1.11.18 +- Update to 1.11.18 (bsc#1120932, CVE-2019-3498) New: django-sqlite-326.patch Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.r049WK/_old 2019-02-01 11:45:05.148574646 +0100 +++ /var/tmp/diff_new_pack.r049WK/_new 2019-02-01 11:45:05.152574641 +0100 @@ -12,7 +12,7 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # @@ -32,8 +32,23 @@ Source1: https://www.djangoproject.com/m/pgp/Django-%{version}.checksum.txt#/Django-%{version}.tar.gz.asc Source2:%{name}.keyring Source99: python-Django1-rpmlintrc +Patch0: django-sqlite-326.patch +BuildRequires: %{python_module Jinja2 >= 2.9.2} +BuildRequires: %{python_module Pillow} +BuildRequires: %{python_module PyYAML} +BuildRequires: %{python_module argon2-cffi >= 16.1.0} BuildRequires: %{python_module base} +BuildRequires: %{python_module bcrypt} +BuildRequires: %{python_module docutils} +BuildRequires: %{python_module geoip2} +BuildRequires: %{python_module mock} +BuildRequires: %{python_module numpy} +BuildRequires: %{python_module pylibmc} +BuildRequires: %{python_module python-memcached >= 1.59} +BuildRequires: %{python_module pytz} BuildRequires: %{python_module setuptools} +BuildRequires: %{python_module sqlparse} +BuildRequires: %{python_module tblib} BuildRequires: fdupes BuildRequires: python-rpm-macros Requires: python-Pillow @@ -48,6 +63,11 @@ Provides: python-South = %{version} Obsoletes: python-South < %{version} BuildArch: noarch +# python-selenium is supported only on the Intel architecture +# Django testsuite runs just fine without, just skips the affected tests +%ifarch %{ix86} x86_64 +BuildRequires: %{python_module selenium} +%endif %ifpython2 Obsoletes: %{oldpython}-Django < %{version} Provides: %{oldpython}-Django = %{version} @@ -69,6 +89,7 @@ echo "`grep -e '^[0-9a-f]\{64\} Django-%{version}.tar.gz' %{SOURCE1} | cut -c1-64` %{SOURCE0}" | sha256sum -c %setup -q -n Django-%{version} +%patch0 -p1 %build %python_build @@ -99,6 +120,11 @@ popd } +%check +export LANG=en_US.UTF8 +export PYTHONDONTWRITEBYTECODE=1 +%python_expand PYTHONPATH=%{buildroot}%{$python_sitelib} $python tests/runtests.py + %post %{python_install_alternative django-admin.py django-admin} ++ django-sqlite-326.patch ++ From: Simon Charette Date: Thu, 6 Dec 2018 11:37:43 -0500 Subject: Fixed #29182 -- Adjusted SQLite schema table alteration to support 3.26. SQLite 3.26 repoints foreign key constraints on table renames even when foreign_keys pragma is off which breaks every operation that requires a table rebuild to simulate unsupported ALTER TABLE statements. Fortunately the newly introduced legacy_alter_table pragma allows one to disable this behavior and restore the previous schema editor assumptions. Thanks Florian Apolloner, Christoph Trassl, Chris Lamb for the report and troubleshooting assistance. --- django/db/backends/sqlite3/schema.py | 2 ++ 1 file changed, 2 insertions(+) Index: Django-1.11.18/django/db/backends/sqlite3/schema.py === --- Django-1.11.18.orig/django/db/backends/sqlite3/schema.py +++ Django-1.11.18/django/db/backends/sqlite3/schema.py @@ -24,10 +24,12 @@ class DatabaseSchemaEditor(BaseDatabaseS c.execute('PRAGMA foreign_keys') self._initial_pragma_fk = c.fetchone()[0] c.execute('PRAGMA foreign_keys = 0')
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2019-01-10 15:22:18 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.28833 (New) Package is "python-Django1" Thu Jan 10 15:22:18 2019 rev:7 rq:663752 version:1.11.18 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2018-12-11 15:48:19.138174219 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.28833/python-Django1.changes 2019-01-10 15:22:28.654384081 +0100 @@ -1,0 +2,9 @@ +Tue Jan 8 15:20:11 UTC 2019 - kber...@suse.com + +- Update to 1.11.18 + * CVE-2019-3498 -- Fixed content spoofing possiblity in the default 404 page. + * Pinned Pillow != 5.4.0 in test requirements. + * Fixed broken links to PyYAML page. + * Doc'd that mysqlclient 1.3.14 and later isn't supported. + +--- Old: Django-1.11.17.tar.gz Django-1.11.17.tar.gz.asc New: Django-1.11.18.tar.gz Django-1.11.18.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.w3DIzn/_old 2019-01-10 15:22:29.306383406 +0100 +++ /var/tmp/diff_new_pack.w3DIzn/_new 2019-01-10 15:22:29.310383402 +0100 @@ -1,7 +1,7 @@ # # spec file for package python-Django1 # -# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -12,7 +12,7 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via https://bugs.opensuse.org/ +# Please submit bugfixes or comments via http://bugs.opensuse.org/ # @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.17 +Version:1.11.18 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.17.tar.gz -> Django-1.11.18.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.17.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.28833/Django-1.11.18.tar.gz differ: char 5, line 1 ++ Django-1.11.17.tar.gz.asc -> Django-1.11.18.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.17.tar.gz.asc 2018-12-11 15:48:17.214176341 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.28833/Django-1.11.18.tar.gz.asc 2019-01-10 15:22:28.566384172 +0100 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.17, released December 3, 2018. +tarball and wheel files of Django 1.11.18, released January 4, 2019. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT +the ID ``1E8ABDC773EDE252`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 +gpg --keyserver pgp.mit.edu --recv-key 1E8ABDC773EDE252 Once the key is imported, verify this file:: @@ -24,39 +24,39 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.17-py2.py3-none-any.whl -https://www.djangoproject.com/m/releases/1.11/Django-1.11.17.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.18.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.18-py2.py3-none-any.whl MD5 checksums = -a638d81ed5a9f3e72aaa623208a0328e Django-1.11.17-py2.py3-none-any.whl -7ca3b663495a78895f014573f37db606 Django-1.11.17.tar.gz +ef734560a81a8c0eb535e7a46205bd72 Django-1.11.18.tar.gz +45315e6544510143dfcb066584447ecc Django-1.11.18-py2.py3-none-any.whl SHA1 checksums == -f9f2302e3c18d2655a6912fcea1a3b822702f65e Django-1.11.17-py2.py3-none-any.whl -eefdad39bfc854130676d9a0780f083f93e55642 Django-1.11.17.tar.gz +705d631e290ba20e19c574f8bb2f2c26d281ddb1 Django-1.11.18.tar.gz +261206d5ab01123f7edfe8954ad486035fa5983d Django-1.11.18-py2.py3-none-any.whl SHA256 checksums -f1a961b954d96bb24b397db4c35e9a128d12e044d6b57984c122282b592d508d Django-1.11.17-py2.py3-none-any.whl -a787ee66f4b4cf8ed753661cabcec603989677fa3a107fcb7f15511a44bdb483 Django-1.11.17.tar.gz +73cca1dac15
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2018-12-11 15:48:15 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new.19453 (New) Package is "python-Django1" Tue Dec 11 15:48:15 2018 rev:6 rq:656847 version:1.11.17 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2018-08-18 00:03:07.282899430 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.19453/python-Django1.changes 2018-12-11 15:48:19.138174219 +0100 @@ -1,0 +2,9 @@ +Mon Dec 10 13:54:41 UTC 2018 - Ondřej Súkup + +- Update to 1.11.17 + * Prevented repetitive calls to geos_version_tuple() in the WKBWriter class +in an attempt to fix a random crash involving LooseVersion + * Fixed a race condition in QuerySet.update_or_create() that could result +in data loss + +--- Old: Django-1.11.15.tar.gz Django-1.11.15.tar.gz.asc New: Django-1.11.17.tar.gz Django-1.11.17.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.Mnc8sv/_old 2018-12-11 15:48:19.942173332 +0100 +++ /var/tmp/diff_new_pack.Mnc8sv/_new 2018-12-11 15:48:19.946173327 +0100 @@ -12,7 +12,7 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # @@ -22,7 +22,7 @@ %define skip_python3 1 %endif Name: python-Django1 -Version:1.11.15 +Version:1.11.17 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.15.tar.gz -> Django-1.11.17.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.15.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new.19453/Django-1.11.17.tar.gz differ: char 5, line 1 ++ Django-1.11.15.tar.gz.asc -> Django-1.11.17.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.15.tar.gz.asc 2018-08-08 14:54:59.269697460 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new.19453/Django-1.11.17.tar.gz.asc 2018-12-11 15:48:17.214176341 +0100 @@ -2,16 +2,16 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.15, released August 1, 2018. +tarball and wheel files of Django 1.11.17, released December 3, 2018. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have the Django release manager's public key in your keyring; this key has -the ID ``1E8ABDC773EDE252`` and can be imported from the MIT +the ID ``E17DF5C82B4F9D00`` and can be imported from the MIT keyserver. For example, if using the open-source GNU Privacy Guard implementation of PGP: -gpg --keyserver pgp.mit.edu --recv-key 1E8ABDC773EDE252 +gpg --keyserver pgp.mit.edu --recv-key E17DF5C82B4F9D00 Once the key is imported, verify this file:: @@ -24,40 +24,39 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.15-py2.py3-none-any.whl -https://www.djangoproject.com/m/releases/1.11/Django-1.11.15.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.17-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.17.tar.gz MD5 checksums = -d72f2d11b2c8f6cdced3d4c682d7a6fb Django-1.11.15-py2.py3-none-any.whl -9c25bc2575a2cd357bcc5764f809d29d Django-1.11.15.tar.gz +a638d81ed5a9f3e72aaa623208a0328e Django-1.11.17-py2.py3-none-any.whl +7ca3b663495a78895f014573f37db606 Django-1.11.17.tar.gz SHA1 checksums == -c1add02870594930570fb224cc18d0d2a4a980a1 Django-1.11.15-py2.py3-none-any.whl -dfcb521471a5364bebe5fe1c40ad01cdd48e23bf Django-1.11.15.tar.gz +f9f2302e3c18d2655a6912fcea1a3b822702f65e Django-1.11.17-py2.py3-none-any.whl +eefdad39bfc854130676d9a0780f083f93e55642 Django-1.11.17.tar.gz SHA256 checksums -8176ac7985fe6737ce3d6b2531b4a2453cb7c3377c9db00bacb2b3320f4a1311 Django-1.11.15-py2.py3-none-any.whl -b18235d82426f09733d2de9910cee975cf52ff05e5f836681eb957d105a05a40 Django-1.11.15.tar.gz +f1a961b954d96bb24b397db4c35e9a128d12e044d6b57984c122282b592d508d Django-1.11.17-py2.py3-none-any.whl +a787ee66f4b4cf8ed753661cabcec603989677fa3a107fcb7f15511a44bdb483 Django-1.11.17.tar.gz -BEGIN PGP SIGNATURE- -Version: GnuPG v1 -iQIcBAEBCAAGBQJbYbh4AAoJEB6Kvcdz7eJS7OsP/2eiyNgbKbiborw09JVbjRif -EJFWXBIRXVqvQuCQq0ptrsZ3+fuDlX
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2018-08-18 00:02:58 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new (New) Package is "python-Django1" Sat Aug 18 00:02:58 2018 rev:5 rq:629406 version:1.11.15 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2018-08-08 14:54:59.305697520 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new/python-Django1.changes 2018-08-18 00:03:07.282899430 +0200 @@ -1,0 +2,5 @@ +Wed Aug 8 13:01:24 UTC 2018 - tchva...@suse.com + +- Build python3 variant on old Leaps + +--- Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.3otHBo/_old 2018-08-18 00:03:07.870901186 +0200 +++ /var/tmp/diff_new_pack.3otHBo/_new 2018-08-18 00:03:07.870901186 +0200 @@ -18,7 +18,9 @@ %{?!python_module:%define python_module() python-%{**} python3-%{**}} %define oldpython python +%if %{python3_version_nodots} > 34 %define skip_python3 1 +%endif Name: python-Django1 Version:1.11.15 Release:0 @@ -41,16 +43,18 @@ Requires(post): update-alternatives Requires(preun): update-alternatives Recommends: python-bcrypt +Provides: python-Django = %{version} +Obsoletes: python-Django < %{version} +Provides: python-South = %{version} +Obsoletes: python-South < %{version} BuildArch: noarch %ifpython2 +Obsoletes: %{oldpython}-Django < %{version} +Provides: %{oldpython}-Django = %{version} Obsoletes: %{oldpython}-django < %{version} Provides: %{oldpython}-django = %{version} Obsoletes: %{oldpython}-South < %{version} Provides: %{oldpython}-South = %{version} -Provides: python2-Django = %{version} -Obsoletes: python2-Django < %{version} -Provides: python2-South = %{version} -Obsoletes: python2-South < %{version} %endif %python_subpackages
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2018-08-08 14:54:40 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new (New) Package is "python-Django1" Wed Aug 8 14:54:40 2018 rev:4 rq:628044 version:1.11.15 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2018-04-17 11:14:32.930762931 +0200 +++ /work/SRC/openSUSE:Factory/.python-Django1.new/python-Django1.changes 2018-08-08 14:54:59.305697520 +0200 @@ -1,0 +2,14 @@ +Wed Aug 8 09:48:55 UTC 2018 - mimi...@gmail.com + +- update to version 1.11.15 + * boo#1102680 - CVE-2018-14574 Open redirect possibility in CommonMiddleware + * Fixed WKBWriter.write() and write_hex() for empty polygons on GEOS 3.6.1+ + * Fixed a regression in Django 1.11.8 where altering a field with a unique + constraint may drop and rebuild more foreign keys than necessary + * Fixed crashes in django.contrib.admindocs when a view is a callable object, + such as django.contrib.syndication.views.Feed + * Fixed a regression in Django 1.11.12 where QuerySet.values() or values_list() + after combining an annotated and unannotated queryset with union(), + difference(), or intersection() crashed due to mismatching columns + +--- Old: Django-1.11.12.tar.gz Django-1.11.12.tar.gz.asc New: Django-1.11.15.tar.gz Django-1.11.15.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.hptn8u/_old 2018-08-08 14:55:00.009698683 +0200 +++ /var/tmp/diff_new_pack.hptn8u/_new 2018-08-08 14:55:00.013698690 +0200 @@ -20,17 +20,17 @@ %define oldpython python %define skip_python3 1 Name: python-Django1 -Version:1.11.12 +Version:1.11.15 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause Group: Development/Languages/Python -Url:http://www.djangoproject.com +URL:http://www.djangoproject.com Source: https://www.djangoproject.com/m/releases/1.11/Django-%{version}.tar.gz Source1: https://www.djangoproject.com/m/pgp/Django-%{version}.checksum.txt#/Django-%{version}.tar.gz.asc Source2:%{name}.keyring Source99: python-Django1-rpmlintrc -BuildRequires: %{python_module devel} +BuildRequires: %{python_module base} BuildRequires: %{python_module setuptools} BuildRequires: fdupes BuildRequires: python-rpm-macros @@ -38,7 +38,10 @@ Requires: python-pytz Requires: python-setuptools Requires: python-xml +Requires(post): update-alternatives +Requires(preun): update-alternatives Recommends: python-bcrypt +BuildArch: noarch %ifpython2 Obsoletes: %{oldpython}-django < %{version} Provides: %{oldpython}-django = %{version} @@ -49,9 +52,6 @@ Provides: python2-South = %{version} Obsoletes: python2-South < %{version} %endif -Requires(post): update-alternatives -Requires(preun): update-alternatives -BuildArch: noarch %python_subpackages %description @@ -75,12 +75,12 @@ %python_clone -a %{buildroot}%{_bindir}/django-admin.py %python_clone -a %{buildroot}%{_bindir}/django-admin -%{python_expand install -D -m 0644 extras/django_bash_completion %{buildroot}%{_sysconfdir}/bash_completion.d/django_bash_completion-%{$python_bin_suffix}.sh +%{python_expand install -D -m 0644 extras/django_bash_completion %{buildroot}%{_datadir}/bash-completion/completions/django_bash_completion-%{$python_bin_suffix}.sh pushd %{buildroot}%{$python_sitelib} chmod a-x django/contrib/admin/static/admin/js/vendor/xregexp/xregexp.js # Fix wrong-script-interpreter -sed -i "s|^#!/usr/bin/env python$|#!%{__$python}|" django/bin/django-admin.py -sed -i "s|^#!/usr/bin/env python$|#!%{__$python}|" django/conf/project_template/manage.py-tpl +sed -i "s|^#!%{_bindir}/env python$|#!%{__$python}|" django/bin/django-admin.py +sed -i "s|^#!%{_bindir}/env python$|#!%{__$python}|" django/conf/project_template/manage.py-tpl %fdupes . # Deduplicating files can generate a RPMLINT warning for pyc mtime $python -m compileall -d %{$python_sitelib} django/bin/ @@ -102,10 +102,11 @@ %python_uninstall_alternative django-admin %files %{python_files} -%doc AUTHORS LICENSE README.rst +%license LICENSE +%doc AUTHORS README.rst %python_alternative %{_bindir}/django-admin %python_alternative %{_bindir}/django-admin.py -%{_sysconfdir}/bash_completion.d/django_bash_completion-%{python_bin_suffix}.sh +%{_datadir}/bash-completion/completions/django_bash_completion-%{python_bin_suffix}.sh %{python_sitelib}/django
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2018-04-17 11:14:27 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new (New) Package is "python-Django1" Tue Apr 17 11:14:27 2018 rev:3 rq:597208 version:1.11.12 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2018-02-08 14:10:05.194831190 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new/python-Django1.changes 2018-04-17 11:14:32.930762931 +0200 @@ -1,0 +2,24 @@ +Mon Apr 16 19:19:10 UTC 2018 - tbecht...@suse.com + +update to version 1.11.12 (CVE-2018-7537, CVE-2018-7536): + * Fixed #29273 -- Prevented initial selection of empty choice in multiple choice widgets. + * Fixed links to Sphinx docs. + * Fixed #29192 -- Removed inaccurate statement regarding overriding fields from abstract base classes. + * Added CVE-2018-7536,7 to the security release archive. + * Added release date for 1.11.12. + * Bumped version for 1.11.12 release. + * Fixed #29229 -- Fixed column mismatch crash when combining two annotated values_list() querysets with union(), difference(), or intersection(). + * Added stub release notes for 1.11.12. + * Fixed typo in docs/releases/1.11.12.txt. + * Post-release version bump. + * Fixed CVE-2018-7537 -- Fixed catastrophic backtracking in django.utils.text.Truncator. + * Bumped version for 1.11.11 release. + * Post-release version bump. + * Removed blank lines per isort 4.3.0. + * Fixed CVE-2018-7536 -- Fixed catastrophic backtracking in urlize and urlizetrunc template filters. + * Switched test requirement to new psycopg2-binary package. + * Added stub release notes for security releases. + * Corrected doc'd type of some parameters from string to str. + * Added CVE-2018-6188 to the security release archive. + +--- Old: Django-1.11.10.tar.gz Django-1.11.10.tar.gz.asc New: Django-1.11.12.tar.gz Django-1.11.12.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.zQPX7J/_old 2018-04-17 11:14:33.854719602 +0200 +++ /var/tmp/diff_new_pack.zQPX7J/_new 2018-04-17 11:14:33.858719415 +0200 @@ -20,7 +20,7 @@ %define oldpython python %define skip_python3 1 Name: python-Django1 -Version:1.11.10 +Version:1.11.12 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.10.tar.gz -> Django-1.11.12.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.10.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new/Django-1.11.12.tar.gz differ: char 6, line 1 ++ Django-1.11.10.tar.gz.asc -> Django-1.11.12.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.10.tar.gz.asc 2018-02-08 14:10:05.062837353 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new/Django-1.11.12.tar.gz.asc 2018-04-17 11:14:32.294792754 +0200 @@ -2,7 +2,7 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.10, released February 1, 2018. +tarball and wheel files of Django 1.11.12, released April 2, 2018. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have @@ -24,40 +24,40 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.10.tar.gz -https://www.djangoproject.com/m/releases/1.11/Django-1.11.10-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.12-py2.py3-none-any.whl +https://www.djangoproject.com/m/releases/1.11/Django-1.11.12.tar.gz MD5 checksums = -f306015e16a8d5024dbac923ac34fffb Django-1.11.10.tar.gz -dc59370ed297d818fe90b873fb22c901 Django-1.11.10-py2.py3-none-any.whl +9f48e21c7c0054ffb06c629d041d98d4 Django-1.11.12-py2.py3-none-any.whl +af669c68c00382780c05d0e7a77b0d48 Django-1.11.12.tar.gz SHA1 checksums == -69485a3f6f9d0fcc15e5d50788bcae1f82216028 Django-1.11.10.tar.gz -68e9afb0da3713431d286889cf9e1fcf78aef0bd Django-1.11.10-py2.py3-none-any.whl +40d138410780c871df65122984e9e8cec803de6d Django-1.11.12-py2.py3-none-any.whl +2267e052b1be81a61421d2f607a164ad486b56c9 Django-1.11.12.tar.gz SHA256 checksums -22383567385a9c406d8a5ce080a2694c82c6b733e157922197e8b393bb3aacd9 Django-1.11.10.tar.gz -ac4c797a328a5ac8777ad61bcd00da279773455cc78b4058de2a9842a0eb6ee8 Django-1.11.10-py2.py3-none-any.whl +056fe5b9e1f8f7fed9bb392919d64f6b33b3a71cfb0f170a90ee277a6ed32bc2 Django-1.11.12-py2.
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2018-02-08 14:10:03 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new (New) Package is "python-Django1" Thu Feb 8 14:10:03 2018 rev:2 rq:573723 version:1.11.10 Changes: --- /work/SRC/openSUSE:Factory/python-Django1/python-Django1.changes 2018-01-13 21:45:11.248955437 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new/python-Django1.changes 2018-02-08 14:10:05.194831190 +0100 @@ -1,0 +2,28 @@ +Wed Feb 7 14:04:29 UTC 2018 - tbecht...@suse.com + +- update to 1.11.10 (bsc#1077714, CVE-2018-6188): + * Fixed GeoIP test failure with the latest data. + * Bumped version for 1.11.9 release. + * Fixed #28890 -- Removed newlines between MultiWidget's subwidgets. + * Fixed #29016 -- Fixed incorrect foreign key nullification on related instance deletion. + * Fixed #29032 -- Fixed an example of using expressions in QuerySet.values(). + * Added stub release notes for 1.11.10. + * Fixed typo in docs/topics/testing/advanced.txt. + * Fixed CVE-2018-6188 -- Fixed information leakage in AuthenticationForm. + * Fixed #29017 -- Updated BaseCommand.leave_locale_alone doc per refs #24073. + * Refs #28876 -- Fixed incorrect class-based model index name generation for models with quoted db_table. + * Fixed location of spatialite_source label. + * Fixed #29002 -- Corrected cached template loader docs about when it's automatically enabled. + * Fixed #29094 -- Fixed crash when entering an invalid uuid in ModelAdmin.raw_id_fields. + * Added release date for 1.11.9. + * Refs #28876 -- Fixed incorrect foreign key constraint name for models with quoted db_table. + * Fixed a GeoIP2 test failure with the latest GeoIP2 database. + * Post-release version bump. + * Fixed typo in docs/topics/i18n/translation.txt. + * Bumped version for 1.11.10 release. + * Added stub release notes for 1.11.9. + * Fixed #29071 -- Fixed contrib.auth.authenticate() crash if a backend doesn't accept a request but a later one does. + * Fixed #25277 -- Restored test dependency to the original python-memcached. + * Refs #28856 -- Fixed caching of a GenericForeignKey pointing to a model that uses more than one level of MTI. + +--- Old: Django-1.11.8.tar.gz Django-1.11.8.tar.gz.asc New: Django-1.11.10.tar.gz Django-1.11.10.tar.gz.asc Other differences: -- ++ python-Django1.spec ++ --- /var/tmp/diff_new_pack.h1XIkE/_old 2018-02-08 14:10:06.702760785 +0100 +++ /var/tmp/diff_new_pack.h1XIkE/_new 2018-02-08 14:10:06.706760598 +0100 @@ -1,7 +1,7 @@ # -# spec file for package python-Django +# spec file for package python-Django1 # -# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,7 +20,7 @@ %define oldpython python %define skip_python3 1 Name: python-Django1 -Version:1.11.8 +Version:1.11.10 Release:0 Summary:A high-level Python Web framework License:BSD-3-Clause ++ Django-1.11.8.tar.gz -> Django-1.11.10.tar.gz ++ /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.8.tar.gz /work/SRC/openSUSE:Factory/.python-Django1.new/Django-1.11.10.tar.gz differ: char 5, line 1 ++ Django-1.11.8.tar.gz.asc -> Django-1.11.10.tar.gz.asc ++ --- /work/SRC/openSUSE:Factory/python-Django1/Django-1.11.8.tar.gz.asc 2018-01-13 21:45:11.208957301 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new/Django-1.11.10.tar.gz.asc 2018-02-08 14:10:05.062837353 +0100 @@ -2,7 +2,7 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball and wheel files of Django 1.11.8, released December 2, 2017. +tarball and wheel files of Django 1.11.10, released February 1, 2018. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have @@ -24,40 +24,40 @@ Release packages: = -https://www.djangoproject.com/m/releases/1.11/Django-1.11.8-py2.py3-none-any.whl -https://www.djangoproject.com/m/releases/1.11/Django-1.11.8.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.10.tar.gz +https://www.djangoproject.com/m/releases/1.11/Django-1.11.10-py2.py3-none-any.whl MD5 checksums = -0f6557754e9347aeccf0f379b15a1264 Django-1.11.8-py2.py3-none-any.whl -e8b68d44b87a3de36e13547ec2722af2 Djan
commit python-Django1 for openSUSE:Factory
Hello community, here is the log from the commit of package python-Django1 for openSUSE:Factory checked in at 2018-01-13 21:45:10 Comparing /work/SRC/openSUSE:Factory/python-Django1 (Old) and /work/SRC/openSUSE:Factory/.python-Django1.new (New) Package is "python-Django1" Sat Jan 13 21:45:10 2018 rev:1 rq:559133 version:1.11.8 Changes: New Changes file: --- /dev/null 2018-01-05 12:14:39.755488130 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django1.new/python-Django1.changes 2018-01-13 21:45:11.248955437 +0100 @@ -0,0 +1,1361 @@ +--- +Thu Dec 21 15:56:39 UTC 2017 - mimi...@gmail.com + +- build only for python2 - Python3 provided by Django-2.0 + +--- +Tue Dec 12 05:16:57 UTC 2017 - tbecht...@suse.com + +- update to 1.11.8: + * Fixed #28488 -- Reallowed error handlers to access CSRF tokens. + * Fixed #28856 -- Fixed a regression in caching of a GenericForeignKey +pointing to a MTI model. + * Fixed #28597 -- Fixed crash with the name of a model's autogenerated primary +key in an Index's fields. + * Added stub release notes for 1.11.7. + * Fixed #28305 -- Fixed "Cannot change column 'x': used in a foreign key constraint" +crash on MySQL with a sequence of AlterField or RenameField operations. + * Fixed #28689 -- Fixed unquoted table names in Subquery SQL when using OuterRef. + * Added assertion helpers for PostgreSQL's server-side cursor tests. + * Fixed #28729 -- Replaced a numbered list with unordered list in TemplatesSetting docs. + * Fixed #28786 -- Doc'd middleware ordering considerations due to +CommonMiddleware setting Content-Length. + * Added release date for 1.11.8. + * Fixed #28702 -- Made query lookups for CIText fields use citext. + * Added 2017-12794 to the security release archive. + * Fixed typo in docs/topics/cache.txt. + * Bumped version for 1.11.6 release. + * Added release date for 1.11.6. + * Fixed #28648 -- Corrected typo in docs/topics/db/queries.txt. + * Bumped version for 1.11.7 release. + * Added stub release notes for 1.11.8. + * Fixed #28848 -- Fixed SQLite/MySQL crash when ordering by a filtered +subquery that uses nulls_first/nulls_last. + * Fixed typo in docs/topics/db/aggregation.txt. + * Fixed #28802 -- Fixed typo in docs/topics/auth/default.txt. + * Fixed typo in docs/topics/forms/media.txt. + * Bumped version for 1.11.8 release. + * Fixed typo in docs/ref/models/querysets.txt. + * Fixed test failures due to ordering differences on PostgreSQL 10. + * Fixed #28710 -- Fixed the Basque DATE_FORMAT string + * Added stub release notes for 1.11.6. + * Fixed #28747 -- Fixed typos in django/conf/global_settings.py comments. + * Fixed #28817 -- Made QuerySet.iterator() use server-side cursors after +values() and values_list(). + * Post-release version bump. + * Fixed #28792 -- Fixed index name truncation of namespaced tables. + * Fixed #28781 -- Added QuerySet.values()/values_list() support for union(), +difference(), and intersection(). + * Fixed #28722 -- Made QuerySet.reverse() affect nulls_first/nulls_last. + * Refs #28710 -- Simplified l10n format test + * Initialized CsrfViewMiddleware once in csrf_tests. + * Added release date for 1.11.7. + * Linked to prefetch_related_objects func in DB optimization docs. + * Fixed #28645 -- Reallowed AuthenticationForm to raise the inactive user +error when using ModelBackend. + * Fixed #28653 -- Added missing ForeignKey.on_delete argument in docs. + * Fixed #28561 -- Removed inaccurate docs about QuerySet.order_by() and joins. + * Fixed #28555 -- Made CharField convert whitespace-only values to the +empty_value when strip is enabled. + * Fixed #28601 -- Prevented cache.get_or_set() from caching None if default +is a callable that returns None. + +--- +Wed Sep 20 21:53:53 UTC 2017 - toddrme2...@gmail.com + +- update to version 1.11.5 + * CVE-2017-12794: Possible XSS in traceback section of technical 500 debug page + * Fixed GEOS version parsing if the version has a commit hash at the end (new +in GEOS 3.6.2) (:ticket:`28441`). + * Added compatibility for ``cx_Oracle`` 6 (:ticket:`28498`). + * Fixed select widget rendering when option values are tuples (:ticket:`28502`). + * Django 1.11 inadvertently changed the sequence and trigger naming scheme on +Oracle. This causes errors on INSERTs for some tables if +``'use_returning_into': False`` is in the ``OPTIONS`` part of ``DATABASES``. +The pre-1.11 naming scheme is now restored. Unfortunately, it necessarily +requires an update to Oracle tables created with Django 1.11.[1-4]. Use the +upgrade script in :ticket:`28451`