Skip to content
Commit 3d6ddbe8 authored by Chris Lamb's avatar Chris Lamb 👀
Browse files

Triage CVE-2018-14574 for jessie LTS. 

Tried backporting the patch/PoC/unittests to test:

  https://gist.github.com/lamby/79baa689aa3f6b5a30cb3a747e1f45be/raw

.. but pretty sure because it uses path over path_info Django never
even "sees" the leading double //.
parent 92032988
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment