[1.8.x] Fixed CVE-2016-7401 -- Fixed CSRF protection bypass on a site with Google Analytics. - django.git

diff options

author	Collin Anderson <cmawebsite@gmail.com>	2016-03-11 21:36:08 -0500
committer	Tim Graham <timograham@gmail.com>	2016-09-14 13:42:24 -0400
commit	6118ab7d0676f0d622278e5be215f14fb5410b6a (patch)
tree	05d4eef0bc2e9ac5f5ce3560d5786830e4bd24f7 /django/__init__.py
parent	717aa8843938035602148bd34f078583399967c5 (diff)

[1.8.x] Fixed CVE-2016-7401 -- Fixed CSRF protection bypass on a site with Google Analytics.

This is a security fix. Backport of "refs #26158 -- rewrote http.parse_cookie() to better match browsers." 93a135d111c2569d88d65a3f4ad9e6d9ad291452 from master

Diffstat (limited to 'django/__init__.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: