From d8fb557a519a419a53d648ce1ef12dad8673151f Mon Sep 17 00:00:00 2001 From: Claude Paroz Date: Mon, 5 Jan 2015 18:23:57 +0100 Subject: [1.7.x] Fixed #23815 -- Prevented UnicodeDecodeError in CSRF middleware Thanks codeitloadit for the report, living180 for investigations and Tim Graham for the review. Backport of 27dd7e7271 from master. --- docs/releases/1.7.3.txt | 3 +++ 1 file changed, 3 insertions(+) (limited to 'docs') diff --git a/docs/releases/1.7.3.txt b/docs/releases/1.7.3.txt index 50b6b18f16..964c654920 100644 --- a/docs/releases/1.7.3.txt +++ b/docs/releases/1.7.3.txt @@ -17,3 +17,6 @@ Bugfixes affect users who have subclassed ``django.contrib.auth.hashers.PBKDF2PasswordHasher`` to change the default value. + +* Fixed a crash in the CSRF middleware when handling non-ASCII referer header + (:ticket:`23815`). -- cgit v1.3