From 2e8114394b916513c8f2a7f0fd4ef98095eea1c4 Mon Sep 17 00:00:00 2001
From: Rodrigo Toshiaki Horie <rodrigo.horie@hotmail.com>
Date: Mon, 20 Jan 2025 18:58:30 -0300
Subject: [PATCH] [4.6][dependency] update django for CVE-2024-56374 (#6784)

---
 requirements/requirements.in  | 2 +-
 requirements/requirements.txt | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements/requirements.in b/requirements/requirements.in
index 6fa8f96938..329c856200 100644
--- a/requirements/requirements.in
+++ b/requirements/requirements.in
@@ -13,7 +13,7 @@ cryptography>=41.0.7  # CVE-2023-49083
 Cython<3 # due to https://github.com/yaml/pyyaml/pull/702
 daphne
 distro
-django==4.2.17  # CVE-2024-53908
+django==4.2.18  # CVE-2024-56374
 django-auth-ldap
 django-cors-headers
 django-crum
diff --git a/requirements/requirements.txt b/requirements/requirements.txt
index 6673d43557..e0c9e77e30 100644
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@@ -127,7 +127,7 @@ deprecated==1.2.14
     #   opentelemetry-exporter-otlp-proto-http
 distro==1.9.0
     # via -r /awx_devel/requirements/requirements.in
-django==4.2.17
+django==4.2.18
     # via
     #   -r /awx_devel/requirements/requirements.in
     #   channels
@@ -144,7 +144,7 @@ django==4.2.17
     #   djangorestframework
     #   social-auth-app-django
     # via -r /awx_devel/requirements/requirements_git.txt
-django-auth-ldap==4.6.0
+django-auth-ldap==5.1.0
     # via -r /awx_devel/requirements/requirements.in
 django-cors-headers==4.3.1
     # via -r /awx_devel/requirements/requirements.in