FEDORA-EPEL-2018-b4d4e0a3eb created by mrunge a year ago for Fedora EPEL 7
obsolete

rebase EPEL7 package to Django-1.11.x

This update has been submitted for testing by mrunge.

a year ago

This update has been pushed to testing.

a year ago
User Icon tis commented & provided feedback a year ago

This update breaks dependencies of RviewBoard-2.6.17-1.el7 (Requires python2-django(abi) = 0:1.6) and python-djblets-0.9.9-2.el7 (in epel testing, because it requires explicitily python-django16). I'd guess there need to be cordinated update of these packages.

User Icon mrunge commented & provided feedback a year ago

Thank you.

IIRC, sgallagh changed reviewboard packages (and djblets) to explicitly require python-django16 instead of python-django. Reviewboard is the reason, why we didn't upgrade Django some time (years) ago.

That's exactly, what we need to catch before pushing something to stable.

User Icon tis commented & provided feedback a year ago

The issue is obsoletes.

python-django < 1.11.13-2.el7 Django < 1.5.5-3 python-django < 1.5.5-3

If both should coexist, then there is a packaging issue in python-django16. It should create python2-django16 sub-package and not pyton2-django like it does now.

This update has been obsoleted by python-django-1.11.13-4.el7.

a year ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
a year ago
in testing
a year ago
BZ#1357704 CVE-2016-6186 python-django: django: XSS in admin's add/change related popup [epel-7]
0
0
BZ#1432365 Please update python-django in EPEL
0
0
BZ#1488634 CVE-2017-7233 python-django: Open redirect and possible XSS attack via user-supplied numeric redirect URLs [epel-7]
0
0
BZ#1552179 CVE-2018-7536 CVE-2018-7537 python-django: various flaws [epel-7]
0
0
BZ#1611050 CVE-2018-14574 python-django: django: Open redirect possibility in CommonMiddleware [epel-7]
0
0

Automated Test Results