From 2d4f8d6a80f12a6329b207da7367f8f48cb631c7 Mon Sep 17 00:00:00 2001
From: Jimmy Conner <jconner@ciq.com>
Date: Thu, 5 Sep 2024 01:22:30 -0500
Subject: [PATCH] Upgrade Django to fix CVES CVE-2024-42005 CVE-2024-39329
 CVE-2024-38875 CVE-2024-39330 CVE-2024-39614 CVE-2024-27351

---
 requirements/requirements.in  | 2 +-
 requirements/requirements.txt | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements/requirements.in b/requirements/requirements.in
index cc46c06..921c86f 100644
--- a/requirements/requirements.in
+++ b/requirements/requirements.in
@@ -12,7 +12,7 @@ cryptography>=41.0.6  # CVE-2023-49083
 Cython<3 # this is needed as a build dependency, one day we may have separated build deps
 daphne
 distro
-django==4.2.10  # CVE-2024-24680
+django==4.2.15 # CVE-2024-42005
 django-auth-ldap
 django-cors-headers
 django-crum
diff --git a/requirements/requirements.txt b/requirements/requirements.txt
index 2e27965..8d0557f 100644
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@@ -100,7 +100,7 @@ deprecated==1.2.13
     # via jwcrypto
 distro==1.8.0
     # via -r /awx_devel/requirements/requirements.in
-django==4.2.10
+django==4.2.15
     # via
     #   -r /awx_devel/requirements/requirements.in
     #   channels