angler-fishThe Vulnerability History Project

[1.3.X] Altered the behavior of URLField to avoid a potential DOS vector, and to avoid potential leakage of local filesystem data. A security announcement will be made shortly.

      Backport of r16760 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.3.X@16763 bcc190cf-cafb-0310-a4f2-bffc1f526a37
by Edward the Siberian Husky 2011-09-10 01:08:24 UTC
commit 1a76dbefdfc60e2d5954c0ba614c3d054ba9c3f0
Django Fix CVE-2011-4137 Fix CVE-2011-4138
django/core/validators.py
+18 -32
django/db/models/fields/__init__.py
+1 -1
docs/internals/deprecation.txt
-6
docs/ref/forms/fields.txt
-5
docs/ref/models/fields.txt
+3 -10
docs/ref/settings.txt
+10 -16
tests/modeltests/validation/__init__.py
+2 -2
tests/modeltests/validation/models.py
-1
tests/modeltests/validation/tests.py
+13 -10
tests/regressiontests/forms/tests/fields.py
+10 -4
expand_less