Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

python3Packages.django_5: 5.0.5 -> 5.0.7 #325895

Closed
wants to merge 1 commit into from
Closed

python3Packages.django_5: 5.0.5 -> 5.0.7 #325895

wants to merge 1 commit into from

Conversation

LeSuisse
Copy link
Contributor

@LeSuisse LeSuisse commented Jul 9, 2024
edited
Loading

Description of changes

Fixes CVE-2024-38875, CVE-2024-39329, CVE-2024-39330 and CVE-2024-39614.

Changes:
https://docs.djangoproject.com/en/5.0/releases/5.0.7/
https://docs.djangoproject.com/en/5.0/releases/5.0.6/ (not relevant for us)

Things done

  • Built on platform(s)
    • x86_64-linux
    • aarch64-linux
    • x86_64-darwin
    • aarch64-darwin
  • For non-Linux: Is sandboxing enabled in nix.conf? (See Nix manual)
    • sandbox = relaxed
    • sandbox = true
  • Tested, as applicable:
  • Tested compilation of all packages that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage
  • Tested basic functionality of all binary files (usually in ./result/bin/)
  • 24.11 Release Notes (or backporting 23.11 and 24.05 Release notes)
    • (Package updates) Added a release notes entry if the change is major or breaking
    • (Module updates) Added a release notes entry if the change is significant
    • (Module addition) Added a release notes entry if adding a new NixOS module
  • Fits CONTRIBUTING.md.

Result of nixpkgs-review pr 325895 run on x86_64-linux 1

5 packages built:
  • healthchecks
  • python311Packages.django_5
  • python311Packages.django_5.dist
  • python312Packages.django_5
  • python312Packages.django_5.dist

@LeSuisse LeSuisse added 1.severity: security Issues which raise a security issue, or PRs that fix one backport release-24.05 labels Jul 9, 2024
@LeSuisse LeSuisse marked this pull request as draft July 9, 2024 17:28
@LeSuisse LeSuisse force-pushed the django-5.0.7-4.2.14 branch from 657be40 to ce1f24e Compare July 9, 2024 17:29
@LeSuisse LeSuisse changed the title python3Packages.django_5: 5.0.5 -> 5.0.7, python3Packages.django_4: 4.2.12 -> 4.2.14 python3Packages.django_5: 5.0.5 -> 5.0.7 Jul 9, 2024
@LeSuisse LeSuisse marked this pull request as ready for review July 9, 2024 17:39
@LeSuisse
Copy link
Contributor Author

LeSuisse commented Jul 9, 2024

Closing in favor of #325898

@LeSuisse LeSuisse closed this Jul 9, 2024
@LeSuisse LeSuisse deleted the django-5.0.7-4.2.14 branch July 9, 2024 17:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
1.severity: security Issues which raise a security issue, or PRs that fix one 6.topic: python
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@LeSuisse