python3-django: upgrade 2.2.24 -> 2.2.25

changelog: ================================================================================ Django 2.2.25 fixes a security issue with severity "low" in 2.2.24. CVE-2021-44420: Potential bypass of an upstream access control based on URL paths ================================================================================= HTTP requests for URLs with trailing newlines could bypass an upstream access control based on URL paths. Signed-off-by: Xu Huan <xuhuan.fnst@fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
2026-04-03 18:08:36 +00:00 · 2021-12-15 17:48:27 +08:00
parent c46b44f1e8
commit eaacb6321c
1 changed files with 1 additions and 2 deletions
--- a/meta-python/recipes-devtools/python/python3-django_2.2.25.bb
+++ b/meta-python/recipes-devtools/python/python3-django_2.2.25.bb
@@ -0,0 +1,12 @@
+require python-django.inc
+
+# Pin to 2.2.x LTS releases ONLY for this recipe
+UPSTREAM_CHECK_REGEX = "/${PYPI_PACKAGE}/(?P<pver>(2\.2\.\d*)+)/"
+
+inherit setuptools3
+
+SRC_URI[sha256sum] = "b1e65eaf371347d4b13eb7e061b09786c973061de95390c327c85c1e2aa2349c"
+
+RDEPENDS:${PN} += "\
+    ${PYTHON_PN}-sqlparse \
+"