p31829507
/
django
mirror of https://github.com/django/django.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
django/tests
History
Jacob Kaplan-Moss 9f8287a3f1 SECURITY ALERT: Corrected regular expressions for URL and email fields. 
Certain email addresses/URLs could trigger a catastrophic backtracking situation, causing 100% CPU and server overload. If deliberately triggered, this could be the basis of a denial-of-service attack.

This security vulnerability was disclosed in public, so we're skipping our
normal security release process to get the fix out as soon as possible.

This is a security related update. A full announcement, as well as backports for the 1.1.X and 1.0.X series will follow.

git-svn-id: http://code.djangoproject.com/svn/django/trunk@11603 bcc190cf-cafb-0310-a4f2-bffc1f526a37
 		2009-10-09 20:57:59 +00:00
..
modeltests Fixed #11886 -- Corrected handling of F() expressions that use parentheses. Thanks to Brent Hagany for the report. 2009-09-16 12:09:47 +00:00
regressiontests SECURITY ALERT: Corrected regular expressions for URL and email fields. 2009-10-09 20:57:59 +00:00
templates Added missing file from [10457]. 2009-04-09 15:26:15 +00:00
runtests.py Fixed #9282: added a generic comment moderation toolkit. See the documentation for details. 2009-03-23 21:07:02 +00:00
urls.py Fixed #5791 -- Added early-bailout support for views (ETags and Last-modified). 2009-03-22 07:58:29 +00:00