Your submission was sent successfully! Close

CVE-2007-5712

Published: 30 October 2007

The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as used in other products such as PyLucid, when the USE_I18N option and the i18n component are enabled, allows remote attackers to cause a denial of service (memory consumption) via many HTTP requests with large Accept-Language headers.

Priority

Low

Status

Package Release Status
python-django
Launchpad, Ubuntu, Debian
dapper Does not exist

edgy Does not exist

feisty
Released (0.95.1-1ubuntu1.1)
gutsy
Released (0.96-1ubuntu0.1)
hardy Not vulnerable

upstream
Released (0.9.6.1)