The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
[1.9.x] Fixed CVE-2016-2513 -- Fixed user enumeration timing attack during login.
This is a security fix.
by
Leland the Mouse 2016-02-13 20:09:46 UTC
commit af7d09b0c5c6ab68e629fd9baf736f9dd203b18e
Django
Fix
CVE-2016-2513
django/contrib/auth/hashers.py
+20
-57
docs/releases/1.8.10.txt
-33
docs/releases/1.9.3.txt
-33
docs/topics/auth/passwords.txt
-31
tests/auth_tests/test_hashers.py
+1
-57
expand_less
The Vulnerability History Project