angler-fishThe Vulnerability History Project

[1.4.x] Fixed a remote code execution vulnerabilty in URL reversing.

      Thanks Benjamin Bach for the report and initial patch.

This is a security fix; disclosure to follow shortly.

Backport of 8b93b31487d6d3b0fcbbd0498991ea0db9088054 from master
by Lindsey the Elephant Seal 2014-04-20 17:35:24 UTC
commit c1a8c420fe4b27fb2caf5e46d23b5712fc0ac535
Django Fix Arbitrary View Execution CVE-2014-0472
django/core/urlresolvers.py
+1 -21
tests/regressiontests/urlpatterns_reverse/nonimported_module.py
-3
tests/regressiontests/urlpatterns_reverse/tests.py
+1 -22
tests/regressiontests/urlpatterns_reverse/urls.py
-1
tests/regressiontests/urlpatterns_reverse/views.py
-4
expand_less