From 8f9a4d3a2bc42f14bb437defd30c7315adbff22c Mon Sep 17 00:00:00 2001 From: Shai Berger Date: Tue, 30 Jun 2015 01:09:21 +0300 Subject: [1.8.x] Fixed catastrophic backtracking in URLValidator. MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Thanks João Silva for reporting the problem and Tim Graham for finding the problematic RE and for review. This is a security fix; disclosure to follow shortly. --- docs/releases/1.8.3.txt | 7 +++++++ 1 file changed, 7 insertions(+) (limited to 'docs') diff --git a/docs/releases/1.8.3.txt b/docs/releases/1.8.3.txt index 5c6301274b..5e01a131a2 100644 --- a/docs/releases/1.8.3.txt +++ b/docs/releases/1.8.3.txt @@ -60,6 +60,13 @@ The undocumented, internally unused ``validate_integer()`` function is now stricter as it validates using a regular expression instead of simply casting the value using ``int()`` and checking if an exception was raised. +Denial-of-service possibility in URL validation +=============================================== + +:class:`~django.core.validators.URLValidator` included a regular expression +that was extremely slow to evaluate against certain invalid inputs. This regular +expression has been simplified and optimized. + Bugfixes ======== -- cgit v1.3