Safety vulnerability ID: 35277
The information on this page was manually curated by our Cybersecurity Intelligence Team.
The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as used in other products such as PyLucid, when the USE_I18N option and the i18n component are enabled, allows remote attackers to cause a denial of service (memory consumption) via many HTTP requests with large Accept-Language headers.
https://www.djangoproject.com/weblog/2007/oct/26/security-fix
Latest version: 5.0.4
A high-level Python web framework that encourages rapid development and clean, pragmatic design.
The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as used in other products such as PyLucid, when the USE_I18N option and the i18n component are enabled, allows remote attackers to cause a denial of service (memory consumption) via many HTTP requests with large Accept-Language headers.
CONFIRM:http://www.djangoproject.com/weblog/2007/oct/26/security-fix: http://www.djangoproject.com/weblog/2007/oct/26/security-fix
CONFIRM:http://sourceforge.net/forum/forum.php?forum_id=749199: http://sourceforge.net/forum/forum.php?forum_id=749199
DEBIAN:DSA-1640: http://www.debian.org/security/2008/dsa-1640
FEDORA:FEDORA-2007-2788: https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00243.html
FEDORA:FEDORA-2007-3157: https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00257.html
BID:26227: http://www.securityfocus.com/bid/26227
SECUNIA:31961: http://secunia.com/advisories/31961
VUPEN:ADV-2007-3660: http://www.vupen.com/english/advisories/2007/3660
VUPEN:ADV-2007-3661: http://www.vupen.com/english/advisories/2007/3661
SECUNIA:27435: http://secunia.com/advisories/27435
SECUNIA:27597: http://secunia.com/advisories/27597
XF:django-i18n-dos(38143): https://exchange.xforce.ibmcloud.com/vulnerabilities/38143
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application