[pkgsrc/trunk]: pkgsrc/www/py-django3 py-django3: updated to 3.0.4

[adam <adam%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/76a03456e0f0
branches:  trunk
changeset: 412824:76a03456e0f0
user:      adam <adam%pkgsrc.org@localhost>
date:      Thu Mar 12 16:18:54 2020 +0000

description:
py-django3: updated to 3.0.4

Django 3.0.4 fixes a security issue and several bugs in 3.0.3.

CVE-2020-9402: Potential SQL injection via tolerance parameter in GIS functions and aggregates on Oracle

GIS functions and aggregates on Oracle were subject to SQL injection, using a suitably crafted tolerance.

Bugfixes

Fixed a data loss possibility when using caching from async code.
Fixed a regression in Django 3.0 that caused a file response using a temporary file to be closed incorrectly.
Fixed a data loss possibility in the select_for_update(). When using related fields or parent link fields with Multi-table inheritance in the of argument, the corresponding models were not locked.
Fixed a regression in Django 3.0 that caused misplacing parameters in logged SQL queries on Oracle.
Fixed a regression in Django 3.0.3 that caused misplacing parameters of SQL queries when subtracting DateField or DateTimeField expressions on MySQL.
Fixed a regression in Django 3.0 that didn?t include subqueries spanning multivalued relations in the GROUP BY clause

diffstat:

 www/py-django3/Makefile |   4 ++--
 www/py-django3/distinfo |  10 +++++-----
 2 files changed, 7 insertions(+), 7 deletions(-)

diffs (27 lines):

diff -r 8ec49a86aab5 -r 76a03456e0f0 www/py-django3/Makefile
--- a/www/py-django3/Makefile   Thu Mar 12 16:15:09 2020 +0000
+++ b/www/py-django3/Makefile   Thu Mar 12 16:18:54 2020 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.1 2020/02/17 20:23:21 adam Exp $
+# $NetBSD: Makefile,v 1.2 2020/03/12 16:18:54 adam Exp $
 
-DISTNAME=      Django-3.0.3
+DISTNAME=      Django-3.0.4
 PKGNAME=       ${PYPKGPREFIX}-${DISTNAME:tl}
 CATEGORIES=    www python
 MASTER_SITES=  https://www.djangoproject.com/m/releases/${PKGVERSION_NOREV:R}/
diff -r 8ec49a86aab5 -r 76a03456e0f0 www/py-django3/distinfo
--- a/www/py-django3/distinfo   Thu Mar 12 16:15:09 2020 +0000
+++ b/www/py-django3/distinfo   Thu Mar 12 16:18:54 2020 +0000
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.1 2020/02/17 20:23:21 adam Exp $
+$NetBSD: distinfo,v 1.2 2020/03/12 16:18:54 adam Exp $
 
-SHA1 (Django-3.0.3.tar.gz) = a5704bb9bbdf1a441f9f5d9752d229c1f861c391
-RMD160 (Django-3.0.3.tar.gz) = 5cc57e590e9fb514dbccf8ec7ec67aa572640abf
-SHA512 (Django-3.0.3.tar.gz) = c9c432fe8bafec1883522d9fb6fb2caa70b57788a9079f3b89e0455166b096f4b537e41d3a5170a829566bb51a70e824ff09f065866656c1d0b351383e8f468f
-Size (Django-3.0.3.tar.gz) = 8932015 bytes
+SHA1 (Django-3.0.4.tar.gz) = 97030f70e8f385c2f1cea031fb1e17a32e93f9cf
+RMD160 (Django-3.0.4.tar.gz) = 73b7ffe766cfcf2bad698769a3e5f23d37ee1dcd
+SHA512 (Django-3.0.4.tar.gz) = f08bea35d67ed6c0a4df3252abc55bcab80195de7201c51bb3c94ca9068907771751b64ebbd1ffc0c4577473d948df1b48cda7a33c97c2b48c615e094eeb5ae6
+Size (Django-3.0.4.tar.gz) = 9060331 bytes