Hello community, here is the log from the commit of package python-Django for openSUSE:Factory checked in at 2015-03-25 10:00:42 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-Django (Old) and /work/SRC/openSUSE:Factory/.python-Django.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "python-Django" Changes: -------- --- /work/SRC/openSUSE:Factory/python-Django/python-Django.changes 2015-03-12 16:39:01.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django.new/python-Django.changes 2015-03-25 10:00:43.000000000 +0100 @@ -1,0 +2,15 @@ +Mon Mar 23 10:51:37 UTC 2015 - mcihar@suse.cz + +- Update to Django 1.7.7: + Security issues: + * Denial-of-service possibility with strip_tags() + * Mitigated possible XSS attack via user-supplied redirect URLs + Bugfixes: + * Fixed renaming of classes in migrations where renaming a subclass would + cause incorrect state to be recorded for objects that referenced the + superclass (#24354). + * Stopped writing migration files in dry run mode when merging migration + conflicts. When makemigrations --merge is called with verbosity=3 the + migration file is written to stdout (:ticket: 24427). + +------------------------------------------------------------------- Old: ---- Django-1.7.6.checksum.txt Django-1.7.6.tar.gz New: ---- Django-1.7.7.checksum.txt Django-1.7.7.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-Django.spec ++++++ --- /var/tmp/diff_new_pack.NIEpL7/_old 2015-03-25 10:00:44.000000000 +0100 +++ /var/tmp/diff_new_pack.NIEpL7/_new 2015-03-25 10:00:44.000000000 +0100 @@ -17,7 +17,7 @@ Name: python-Django -Version: 1.7.6 +Version: 1.7.7 Release: 0 Summary: A high-level Python Web framework License: BSD-3-Clause ++++++ Django-1.7.6.checksum.txt -> Django-1.7.7.checksum.txt ++++++ --- /work/SRC/openSUSE:Factory/python-Django/Django-1.7.6.checksum.txt 2015-03-12 16:39:00.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.python-Django.new/Django-1.7.7.checksum.txt 2015-03-25 10:00:43.000000000 +0100 @@ -2,7 +2,7 @@ Hash: SHA256 This file contains MD5, SHA1, and SHA256 checksums for the source-code -tarball of Django 1.7.6, released March 9, 2015. +tarball and wheel files of Django 1.7.7, released March 18, 2015. To use this file, you will need a working install of PGP or other compatible public-key encryption software. You will also need to have @@ -24,40 +24,40 @@ Release packages: ================= -Django 1.7.6 (tar.tgz): https://www.djangoproject.com/m/releases/1.7/Django-1.7.6.tar.gz -Django 1.7.6 (.whl): https://www.djangoproject.com/m/releases/1.7/Django-1.7.6-py2.py3-none-any.w... +Django 1.7.7 (tar.tgz): https://www.djangoproject.com/m/releases/1.7/Django-1.7.7.tar.gz +Django 1.7.7 (.whl): https://www.djangoproject.com/m/releases/1.7/Django-1.7.7-py2.py3-none-any.w... MD5 checksums: ============== -9ede80f1a893835ffecce15b23534d82 Django-1.7.6-py2.py3-none-any.whl -e73ec0ba059a5f24563d785763cae37d Django-1.7.6.tar.gz +52919e0b00a228535a3c4b5a72ac5df5 Django-1.7.7-py2.py3-none-any.whl +a62d6598966947d150525ad2ab20fb0c Django-1.7.7.tar.gz SHA1 checksums: =============== -4c24d8d0fa402ed9a0eac2d5ed8d4ecf8745da29 Django-1.7.6-py2.py3-none-any.whl -b61c27847c7b8d6f3f7c1d6b7ddd56bd567d82ba Django-1.7.6.tar.gz +24dce72530af6964e03fba33a122056960f4b9f6 Django-1.7.7-py2.py3-none-any.whl +614cc9f8e1af6630c54300f6bdd88e7b783614c3 Django-1.7.7.tar.gz SHA256 checksums: ================= -f82fb42e84ca28dcbb1149a933ec9c2958546f338f657dd59307db4da0a53c3e Django-1.7.6-py2.py3-none-any.whl -b0f15e0ffe59a2f37cbaf53543f05d2f40c5a755390df03ec0655b5e4a8d4c90 Django-1.7.6.tar.gz +eec57d3219501ec6e685646826f2eb8e77687a93fe374a7e6994490520db093e Django-1.7.7-py2.py3-none-any.whl +4816f892063569ca9a77584fa23cb4995c1b3b954ef875102a8219229cbd2e33 Django-1.7.7.tar.gz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 -iQIcBAEBCAAGBQJU/btMAAoJEB6Kvcdz7eJSGQ8P/ROIgUkPy1XvOjIg6pAnDmPq -W7TVLC/Tsm/Co3r8itfSnrBi9kJQp+wubJx6E04EW3VfFqXlOrsjSi8nKkrox7Cv -g6uRl/nAaBkgMfPhWbKnmRz/dm3I2oW203SWOSaSDl8d8vHeKhPqax1ut4RW520v -WPS1Bu0AH7iOEYzkk4oplzAptMtmsCRUVh9ASahmUAA3OOJ821jl/hjIYLoS9BMD -5LIewJ3iWWdHIhVvHhSJP/ZmXiKEDp96zP8R+4NvacKoAr3mWoL0FqQmAwlMiU1X -j/TjZje9G0DkpLTQFnPMJ7S3Slt+EBwLl66Uh9qFDUtney2v2HPqOAxC0agP1rbz -/kU3MbD8bO3bRl4AgOu0h85xV20Uvr4sa77n26+CIJvowJTtBq3uLX4zDXsu9x7Z -r9jJH7GGN4BE/Nqbe9P1/lt98sFYcXUFeNL/LRgnQBq5NLxpOLcgcXJQesywatq8 -us58r9mdi3LHucQr52XEcYThhUER3UaWbtGuydqCc7oBAWv1siZWCgohL+y6zb3B -gjDrWtgvzn6ekhea/8hOymmssnl46mB/rv2eEemEDQ09wip+bI4W6do3WZFmsbNw -SYaL97L1mRezMOM7EvkSPQBqZugpiWQ02/Kf6tG8mvmGwjXJPBSVljvqBMWR/JBu -qsoJxSf2g3KHnOye++S8 -=wZKo +iQIcBAEBCAAGBQJVCg08AAoJEB6Kvcdz7eJSIdYP/0aK/Bnwwv64Mo5EG2vzZlas +Cmi45wsvBTaGOvd6VujbcGFj6Dnzdf+CjDj+427aOMSKYpNGF6s6XocbwJVzE/a6 +TXowv+FIXYsbXWK4rZ43DEQWTulgD8+Qqhk+ywmEPZarjXsnbsvb8rn9q6tT0KIh +3xaCuL+RhIT2Bk1Inj9ZuFSeZRpoV97TF9R4owZJe8tx9FNgHZDflK/yNAiTTSSN +SzYLLHS4PbVX+UDsZlFJ3U9EPzNU3LALnoqbh+JGgcDjs4IrCi8pjUck1CX4xbSZ +A8ZK+HJHFIl5GDvHmWrCCyAmqYOC50KJi+23QZJZ5TzXklXK7XXQjWZn2I68zUTB +XCuvAaenhhLL9CJs2SEU8NbQliX8ZHsibbAh/7wEGSQm65R3rHfq7Bpr2TJha27O +G4f6e+kFimPYzK0RKAyOgzEee92LZyb1Fu9FxK6IFqNnHAZOu+fqHWdiHskgvmeo +kgxYE+oz212hAgB8kXjI1de6HrVz9fxDAKKQVh/FxyflpAwMPpGrbLPG1cYlBgPo +r2xtR8iYe8T0+jAmbdEL0qH8PizC/IDsGIwCdf0gdoud1i2pVsypeZx4fTDyasLT +BM/XF2Agq4/iklciFYJF7tqOecS24gs0rRK/v2aH4PFX78wPF1aLWZHMo+EoS24I +50+VsxVbVVjJ4y+MTLYh +=f9A1 -----END PGP SIGNATURE----- ++++++ Django-1.7.6.tar.gz -> Django-1.7.7.tar.gz ++++++ /work/SRC/openSUSE:Factory/python-Django/Django-1.7.6.tar.gz /work/SRC/openSUSE:Factory/.python-Django.new/Django-1.7.7.tar.gz differ: char 5, line 1 -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org