This bug was fixed in the package python-django - 1.0.2-1ubuntu0.2
---------------
python-django (1.0.2-1ubuntu0.2) jaunty-security; urgency=low
* SECURITY UPDATE: Certain email addresses/URLs can trigger
a catastrophic backtracking situation, causing 100% CPU
and server overload. (LP: #447617, LP: #478328)
http://www.djangoproject.com/weblog/2009/oct/09/security/
- Applied upstream changeset 11605
- CVE-2009-3695
-- Krzysztof Klimonda <[email protected]> Tue, 13 Oct 2009
21:59:00 +0200
** Changed in: python-django (Ubuntu Jaunty)
Status: Confirmed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2009-3695
--
DoS attack on Django 1.0.x and 1.1.x disclosed
https://bugs.launchpad.net/bugs/447617
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
