From 33eced411fea68fd033a1fbd6de6b424b3af564b Mon Sep 17 00:00:00 2001 From: aszlig Date: Fri, 25 Apr 2014 12:30:23 +0200 Subject: [PATCH] python-django: Update to 1.4.11, 1.5.6 and 1.6.3. This fixes CVE-2014-0472, details can be found at: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0472 https://www.djangoproject.com/weblog/2014/apr/21/security/ Signed-off-by: aszlig (cherry picked from commit 4a0c468043f9c143d784c9d19b6e2a2c395648fb) Signed-off-by: aszlig --- pkgs/top-level/python-packages.nix | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/pkgs/top-level/python-packages.nix b/pkgs/top-level/python-packages.nix index ce019a8464e..e3e6bae580c 100644 --- a/pkgs/top-level/python-packages.nix +++ b/pkgs/top-level/python-packages.nix @@ -2543,11 +2543,11 @@ rec { django_1_6 = buildPythonPackage rec { name = "Django-${version}"; - version = "1.6"; + version = "1.6.3"; src = fetchurl { url = "http://www.djangoproject.com/m/releases/1.6/${name}.tar.gz"; - sha256 = "165bd5wmv2an9h365d12k0112z0l375dxsy7dlxa7r8kyg4gvnfk"; + sha256 = "1wdqb2x0w0c10annbyz7rrrgrv9mpa9f8pz8006lf2csix33r7bd"; }; # error: invalid command 'test' @@ -2561,11 +2561,11 @@ rec { django_1_5 = buildPythonPackage rec { name = "Django-${version}"; - version = "1.5.5"; + version = "1.5.6"; src = fetchurl { url = "http://www.djangoproject.com/m/releases/1.5/${name}.tar.gz"; - sha256 = "07fp8ycx76q2nz96mxld1svvpfsrivjgpql0mr20r7gwzcfrrrka"; + sha256 = "1bxzz71sfvh0zgdzv4x3wdr4ffzd5cfnvq7iq2g1i282sacwnzwv"; }; # error: invalid command 'test' @@ -2579,11 +2579,11 @@ rec { django_1_4 = buildPythonPackage rec { name = "Django-${version}"; - version = "1.4.10"; + version = "1.4.11"; src = fetchurl { url = "http://www.djangoproject.com/m/releases/1.4/${name}.tar.gz"; - sha256 = "1pi9mi14f19xlp29j2c8dz8rs749c1m41d9j1i0b3nlz0cy0h7rx"; + sha256 = "00f2jlls3fhddrg7q4sjkwj6dmclh28n0vqm1m7kzcq5fjrxh6a8"; }; # error: invalid command 'test'