The Vulnerability History Project

[1.5.x] Fixed a remote code execution vulnerabilty in URL reversing.

      Thanks Benjamin Bach for the report and initial patch.

This is a security fix; disclosure to follow shortly.

Backport of 8b93b31487d6d3b0fcbbd0498991ea0db9088054 from master

by Lindsey the Elephant Seal 2014-04-20 17:33:59 UTC

commit 2a5bcb69f42b84464b24b5c835dca6467b6aa7f1

Django Fix Arbitrary View Execution CVE-2014-0472

django/core/urlresolvers.py

+1 -21

tests/regressiontests/urlpatterns_reverse/nonimported_module.py

-3

tests/regressiontests/urlpatterns_reverse/tests.py

+1 -22

tests/regressiontests/urlpatterns_reverse/urls.py

-1

tests/regressiontests/urlpatterns_reverse/views.py

-4

expand_less