Описание
Algorithmic complexity vulnerability in the forms library in Django 1.0 before 1.0.4 and 1.1 before 1.1.1 allows remote attackers to cause a denial of service (CPU consumption) via a crafted (1) EmailField (email address) or (2) URLField (URL) that triggers a large amount of backtracking in a regular expression.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 1.1.1-1ubuntu1 |
| hardy | ignored | end of life |
| intrepid | ignored | end of life, was needed |
| jaunty | released | 1.0.2-1ubuntu0.2 |
| karmic | not-affected | 1.1.1-1ubuntu1 |
| lucid | not-affected | 1.1.1-1ubuntu1 |
| maverick | not-affected | 1.1.1-1ubuntu1 |
| natty | not-affected | 1.1.1-1ubuntu1 |
| oneiric | not-affected | 1.1.1-1ubuntu1 |
Показывать по
Ссылки на источники
5 Medium
CVSS2
Связанные уязвимости
Algorithmic complexity vulnerability in the forms library in Django 1.0 before 1.0.4 and 1.1 before 1.1.1 allows remote attackers to cause a denial of service (CPU consumption) via a crafted (1) EmailField (email address) or (2) URLField (URL) that triggers a large amount of backtracking in a regular expression.
Algorithmic complexity vulnerability in the forms library in Django 1. ...
Django Regex Algorithmic Complexity Causes Denial of Service
5 Medium
CVSS2