python-django: security bump to version 1.11.15 - buildroot

diff options

author	Peter Korsgaard <peter@korsgaard.com>	2018-08-17 16:47:36 +0200
committer	Peter Korsgaard <peter@korsgaard.com>	2018-08-17 18:58:05 +0200
commit	ae977e942893ac7e5c9b69418f047acae1603c27 (patch)
tree	1deeb3abba2de967733864e9558912e814e6c99c /package/php/php.hash
parent	c48f8a64626c60bd1b46804b7cf1a699ff53cdf3 (diff)
download	buildroot-ae977e942893ac7e5c9b69418f047acae1603c27.tar.gz buildroot-ae977e942893ac7e5c9b69418f047acae1603c27.zip

python-django: security bump to version 1.11.15

Bump to the latest release of the 1.11.x LTS series as 1.10.x is no longer supported upstream: https://www.djangoproject.com/download/ Fixes the following security issues: - CVE-2017-12794: Possible XSS in traceback section of technical 500 debug page (1.11.5) - CVE-2018-6188: Information leakage in AuthenticationForm (1.11.10) - CVE-2018-7536: Denial-of-service possibility in urlize and urlizetrunc template filters (1.11.11) - CVE-2018-7537: Denial-of-service possibility in truncatechars_html and truncatewords_html template filters (1.11.11) - CVE-2018-14574: Open redirect possibility in CommonMiddleware (1.11.15) Also add a hash for the license file. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

Diffstat (limited to 'package/php/php.hash')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: