diff options
author | Fathi Boudra <fathi.boudra@linaro.org> | 2024-02-16 11:42:03 +0100 |
---|---|---|
committer | Khem Raj <raj.khem@gmail.com> | 2024-02-16 07:37:31 -0800 |
commit | 6be4e223cb7d71dabe6fdcaa3b0f622b1c8df741 (patch) | |
tree | 961d8d838a771cecdfec00081b6f6ff003eba084 /meta-python/recipes-devtools/python/python3-django_4.2.10.bb | |
parent | e3785b50fd7d7187e284697a5f81286ad55eeeb0 (diff) | |
download | meta-openembedded-6be4e223cb7d71dabe6fdcaa3b0f622b1c8df741.tar.gz |
python3-django: upgrade to Django 4.2.10 LTS release
Django 4.0.x is no longer supported since April 2023.
Upgrade to the latest 4.x LTS release.
Fixes CVEs:
CVE-2024-24680: Potential denial-of-service in intcomma template filter
CVE-2023-43665: Denial-of-service possibility in django.utils.text.Truncator
CVE-2023-41164: Potential denial of service vulnerability in django.utils.encoding.uri_to_iri()
CVE-2023-36053: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator
CVE-2023-31047: Potential bypass of validation when uploading multiple files using one form field
Signed-off-by: Fathi Boudra <fathi.boudra@linaro.org>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Diffstat (limited to 'meta-python/recipes-devtools/python/python3-django_4.2.10.bb')
-rw-r--r-- | meta-python/recipes-devtools/python/python3-django_4.2.10.bb | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-django_4.2.10.bb b/meta-python/recipes-devtools/python/python3-django_4.2.10.bb new file mode 100644 index 000000000..45de69235 --- /dev/null +++ b/meta-python/recipes-devtools/python/python3-django_4.2.10.bb | |||
@@ -0,0 +1,14 @@ | |||
1 | require python-django.inc | ||
2 | inherit setuptools3 | ||
3 | |||
4 | SRC_URI[sha256sum] = "b1260ed381b10a11753c73444408e19869f3241fc45c985cd55a30177c789d13" | ||
5 | |||
6 | RDEPENDS:${PN} += "\ | ||
7 | ${PYTHON_PN}-sqlparse \ | ||
8 | ${PYTHON_PN}-asgiref \ | ||
9 | " | ||
10 | |||
11 | # Set DEFAULT_PREFERENCE so that the LTS version of django is built by | ||
12 | # default. To build the 4.x branch, | ||
13 | # PREFERRED_VERSION_python3-django = "4.0.2" can be added to local.conf | ||
14 | DEFAULT_PREFERENCE = "-1" | ||