1f42f82566c9d2d73aff1c42790d6b1b243f7676 | Vulnerability History Project

The Vulnerability History Project

[2.0.x] Fixed CVE-2019-6975 -- Fixed memory exhaustion in utils.numberformat.format().

      Thanks Sjoerd Job Postmus for the report and initial patch.
Thanks Michael Manfre, Tim Graham, and Florian Apolloner for review.

by Stephanie the Jack Russel 2019-02-11 10:08:45 UTC

commit 1f42f82566c9d2d73aff1c42790d6b1b243f7676

Django Fix Memory exhaustion for format() CVE-2019-6975

django/utils/numberformat.py

+1 -14

docs/releases/1.11.19.txt

-12

docs/releases/2.0.11.txt

-12

tests/utils_tests/test_numberformat.py

-19

expand_less