stable

Django-1.1.1-1.el5

FEDORA-EPEL-2009-0621 created by smilner 15 years ago for Fedora EPEL 5

http://www.djangoproject.com/weblog/2009/oct/09/security/

Description of vulnerability

Django's forms library included field types which perform regular-expression-based validation of email addresses and URLs. Certain addresses/URLs could trigger a pathological performance case in this regular expression, resulting in the server process/thread becoming unresponsive, and consuming excessive CPU over an extended period of time. If deliberately triggered, this could result in an effective denial-of-service attack.

This update has been pushed to testing

15 years ago
User Icon timn provided feedback 15 years ago
karma

Marking as stable since this is a security update.

This update has been submitted for stable

This update has been pushed to stable

15 years ago

Please login to add feedback.

Metadata
Type
security
Karma
1
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
15 years ago
in testing
15 years ago
in stable
15 years ago
BZ#528246 Django's forms DOS in 1.1/1.0
0
0

Automated Test Results