Subject: CVS commit: pkgsrc/www/py-django
From: Adam Ciarcinski
Date: 2020-02-04 18:23:11
Message id: 20200204172311.E1395FBF4@cvs.NetBSD.org

Log Message:
py-django: updated to 1.11.28

Django 1.11.28 fixes a security issue:
CVE-2020-7471: Potential SQL injection via StringAgg(delimiter)
StringAgg aggregation function was subject to SQL injection, using a suitably \ 
crafted delimiter.

Files:
RevisionActionfile
1.113modifypkgsrc/www/py-django/Makefile
1.92modifypkgsrc/www/py-django/distinfo