Bump django from 2.2.10 to 2.2.13 in /cvat/requirements (cvat-ai#1657)

* Bump django from 2.2.10 to 2.2.13 in /cvat/requirements Bumps [django](https://github.com/django/django) from 2.2.10 to 2.2.13. - [Release notes](https://github.com/django/django/releases) - [Commits](django/django@2.2.10...2.2.13) Signed-off-by: dependabot[bot] <[email protected]> * Update CHANGELOG.md Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Nikita Manovich <[email protected]>
signatrix · Aug 3, 2020 · 0327bd8 · 0327bd8
1 parent eb8d68a
commit 0327bd8
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -26,7 +26,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Kibana wrong working time calculation with new annotation UI use (<https://github.com/opencv/cvat/pull/1654>)
 
 ### Security
--
+- SQL injection in Django `CVE-2020-9402` (https://github.com/opencv/cvat/pull/1657)
 
 ## [1.0.0] - 2020-05-29
 ### Added

diff --git a/cvat/requirements/base.txt b/cvat/requirements/base.txt
@@ -1,5 +1,5 @@
 click==6.7
-Django==2.2.10
+Django==2.2.13
 django-appconf==1.0.2
 django-auth-ldap==1.4.0
 django-cacheops==4.0.6