The Vulnerability History Project

[1.2.X] Added protection against spoofing of X_FORWARDED_HOST headers. A security announcement will be made shortly.

      Backport of r16758 from trunk.

git-svn-id: http://code.djangoproject.com/svn/django/branches/releases/1.2.X@16764 bcc190cf-cafb-0310-a4f2-bffc1f526a37

by Edward the Siberian Husky 2011-09-10 01:28:31 UTC

commit c613af4d6485586c79d692b70a9acac429f3ca9d

Django Fix CVE-2011-4139

django/conf/global_settings.py

-2

django/http/__init__.py

+1 -2

docs/ref/request-response.txt

+4 -5

docs/ref/settings.txt

-13

tests/regressiontests/requests/tests.py

-90

expand_less