subject:"\[oe\] \[meta\-python\]\[PATCH 1\/3\] python3\-django\: upgrade 3.2.4 \-> 3.2.5"

Re: [oe] [meta-python][PATCH 1/3] python3-django: upgrade 3.2.4 -> 3.2.5

2021-07-16 Thread Trevor Gamblin

On 2021-07-16 9:27 a.m., Trevor Gamblin wrote: 3.2.5 fixes CVE-2021-35042: Potential SQL injection via unsanitized QuerySet.order_by() input. Additional release notes: - Fixed a regression in Django 3.2 that caused a crash of QuerySet.values_list(…, named=True) after prefetch_related() (#32

[oe] [meta-python][PATCH 1/3] python3-django: upgrade 3.2.4 -> 3.2.5

2021-07-16 Thread Trevor Gamblin

3.2.5 fixes CVE-2021-35042: Potential SQL injection via unsanitized QuerySet.order_by() input. Additional release notes: - Fixed a regression in Django 3.2 that caused a crash of QuerySet.values_list(…, named=True) after prefetch_related() (#32812). - Fixed a bug in Django 3.2 that caused a mig