django
Page content
- Author: voroskoi
- Vulnerable: 0.96-1
- Unaffected: 0.96-2sayshell1
A vulnerability has been reported in Django, which potentially can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to the Django internationalization system (“i18n”) incorrectly processing HTTP headers. This can be exploited to allocate large amounts of memory by sending specially crafted HTTP “Accept-Language” requests. Successful exploitation requires that the “USE_I18N” option and the “i18n” middleware component are enabled.
- Bug Tracker URL: http://bugs.frugalware.org/task/2543