CVE-2015-0221

Priority
Description
The django.views.static.serve view in Django before 1.4.18, 1.6.x before
1.6.10, and 1.7.x before 1.7.3 reads files an entire line at a time, which
allows remote attackers to cause a denial of service (memory consumption)
via a long line in a file.
Assigned-to
mdeslaur
Notes
Package
Upstream:released (1.6.10)
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [1.6.1-2ubuntu0.6])
More Information

Updated: 2019-12-05 18:39:18 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)