[4.6][dependency] update django for CVE-2024-56374 (#6784)

2026-01-09 23:12:08 -03:30 · 2025-01-20 18:58:30 -03:00 · 2025-01-20 18:58:30 -03:00 · 2e8114394b
commit 2e8114394b
parent 3268c9b5fe
2 changed files with 3 additions and 3 deletions
--- a/requirements/requirements.in
+++ b/requirements/requirements.in
@ -13,7 +13,7 @@ cryptography>=41.0.7  # CVE-2023-49083
 Cython<3 # due to https://github.com/yaml/pyyaml/pull/702
 daphne
 distro
-django==4.2.17  # CVE-2024-53908
+django==4.2.18  # CVE-2024-56374
 django-auth-ldap
 django-cors-headers
 django-crum
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@ -127,7 +127,7 @@ deprecated==1.2.14
    #   opentelemetry-exporter-otlp-proto-http
 distro==1.9.0
    # via -r /awx_devel/requirements/requirements.in
-django==4.2.17
+django==4.2.18
    # via
    #   -r /awx_devel/requirements/requirements.in
    #   channels
@ -144,7 +144,7 @@ django==4.2.17
    #   djangorestframework
    #   social-auth-app-django
    # via -r /awx_devel/requirements/requirements_git.txt
-django-auth-ldap==4.6.0
+django-auth-ldap==5.1.0
    # via -r /awx_devel/requirements/requirements.in
 django-cors-headers==4.3.1
    # via -r /awx_devel/requirements/requirements.in