Jacob Kaplan-Moss 9f8287a3f1 SECURITY ALERT: Corrected regular expressions for URL and email fields. ... Certain email addresses/URLs could trigger a catastrophic backtracking situation, causing 100% CPU and server overload. If deliberately triggered, this could be the basis of a denial-of-service attack. This security vulnerability was disclosed in public, so we're skipping our normal security release process to get the fix out as soon as possible. This is a security related update. A full announcement, as well as backports for the 1.1.X and 1.0.X series will follow. git-svn-id: http://code.djangoproject.com/svn/django/trunk@11603 bcc190cf-cafb-0310-a4f2-bffc1f526a37		2009-10-09 20:57:59 +00:00
..
extras	Fixed #9124: fixed `SelectDateWidget` with `required=False`. Thanks, Bernd Schlapsi.	2009-04-18 17:35:53 +00:00
__init__.py	Fixed #7741: django.newforms is now django.forms. This is obviously a backwards-incompatible change. There's a warning upon import of django.newforms itself, but deeper imports will raise errors.	2008-07-19 01:22:26 +00:00
fields.py	SECURITY ALERT: Corrected regular expressions for URL and email fields.	2009-10-09 20:57:59 +00:00
forms.py	Fixed #10968 - Form.errors should use Form.error_class.	2009-09-11 10:47:40 +00:00
formsets.py	Fixed #10082 -- Modified BaseFormSet so that ordering checks work when the formset is empty. Thanks to Petr Marhoun for the report and test case, and bmathieu for the fix.	2009-04-28 14:17:18 +00:00
models.py	Fixed #10922 -- Corrected handling of POST data to ensure that the right objects are updated on save when the ordering field is editable. Thanks to Alex Gaynor, Karen Tracy, and Will Hardy for their contributions to this patch.	2009-07-03 03:05:17 +00:00
util.py	Fixed #6160, #9111 -- Consistently apply conditional_escape to form errors and labels when outputing them as HTML.	2008-11-06 19:49:24 +00:00
widgets.py	Fixed Widget.__init__() for Python 2.6 and greater. Refs #11703	2009-09-11 09:08:07 +00:00