Merge pull request #54940 from dotlambda/CVE-2019-3498

django: CVE-2019-3498
2019-01-31 10:25:34 +01:00 · 2019-01-31 10:25:34 +01:00 · c2707983ec
commit c2707983ec
parent 864f8321ee 682b551864
2 changed files with 4 additions and 6 deletions
--- a/pkgs/development/python-modules/django/1_11.nix
+++ b/pkgs/development/python-modules/django/1_11.nix
@ -6,13 +6,11 @@

 buildPythonPackage rec {
  pname = "Django";
-  version = "1.11.17";
-
-  disabled = pythonOlder "2.7";
+  version = "1.11.18";

  src = fetchurl {
    url = "https://www.djangoproject.com/m/releases/1.11/${pname}-${version}.tar.gz";
-    sha256 = "10xlpm21ll8mgz5py41sz9vrd603qv7an736agbqxkxlyikfx1x7";
+    sha256 = "19b6f020als9hr4q1im5282yn2b1hzf586n9kjrlkrslq7da3k3k";
  };

  patches = stdenv.lib.optionals withGdal [
--- a/pkgs/development/python-modules/django/2_0.nix
+++ b/pkgs/development/python-modules/django/2_0.nix
@ -6,13 +6,13 @@

 buildPythonPackage rec {
  pname = "Django";
-  version = "2.0.9";
+  version = "2.0.10";

  disabled = !isPy3k;

  src = fetchPypi {
    inherit pname version;
-    sha256 = "0sgx548zp5xf8dajiamdskbrphssiyajhgbw8iza6b68mda4bnfn";
+    sha256 = "0292a7ad7d8ffc9cfc6a77f043d2e81f5bbc360c0c4a1686e130ef3432437d23";
  };

  patches = stdenv.lib.optionals withGdal [