py-django vulnerabilities
Mark Felder
feld at FreeBSD.org
Wed Aug 19 15:36:57 UTC 2015
On Wed, Aug 19, 2015, at 10:30, Mark Felder wrote:
>
>
> On Wed, Aug 19, 2015, at 10:27, Li-Wen Hsu wrote:
> > On Wed, Aug 19, 2015 at 11:23 PM, Mark Felder <feld at freebsd.org> wrote:
> > >
> > >
> > > On Tue, Aug 18, 2015, at 13:38, Mark Felder wrote:
> > >> Hello,
> > >>
> > >> Django just released some updates to address vulnerabilities. I have
> > >> created the vuxml entry.
> > >>
> > >> https://vuxml.freebsd.org/freebsd/b0e54dc1-45d2-11e5-adde-14dae9d210b8.html
> > >>
> > >>
> > >> Let me know if you need any help getting these updates pushed and merged
> > >> to quarterly branch
> > >>
> > >>
> > >> Thanks!
> > >
> > > Due to the radio silence and simplicity of the updates (no plist
> > > changes) I am moving forward with pushing these updates and merging to
> > > the quarterly branch.
> >
> > Thanks for the update. I have the same patch with you. But I haven't
> > had www/py-django-devel pass the poudriere test. Are you working on
> > that too?
> >
> > Li-Wen
>
>
> I have not yet touched www/py-django-devel. I figure fewer users are
> affected by it, so I wanted to get the stable releases pushed out first.
Setting the snapshot date to 20150819 seems to fetch and build fine. Is
that OK? Do you follow django development and prefer to carefully choose
a different snapshot date to avoid any recent bugs/issues that could
affect users?
More information about the freebsd-python
mailing list