The Vulnerability History Project

Fixed #8314 -- Fixed an infinite loop caused when submitting a session key (via

      a cookie) with no corresponding entry in the database.

This only affected the database backend, but I've applied the same fix to all
three backends for robustness.


git-svn-id: http://code.djangoproject.com/svn/django/trunk@8351 bcc190cf-cafb-0310-a4f2-bffc1f526a37

by Don the Electric Eel 2008-08-14 19:43:08 UTC

commit 9e423b51e325c9226e2f744bfa52336a626bf63a

Django VCC Windows Path Conversion CVE-2011-0698

django/contrib/sessions/backends/base.py

+3 -6

django/contrib/sessions/backends/cache.py

+1 -2

django/contrib/sessions/backends/db.py

+1 -1

django/contrib/sessions/backends/file.py

+1 -1

django/contrib/sessions/tests.py

-13

expand_less