The NFKC normalization is slow on Windows. As a consequence, ``django.contrib.auth.forms.UsernameField`` was subject to a potential denial of service attack via certain inputs with a very large number of Unicode characters. In order to avoid the vulnerability, invalid values longer than ``UsernameField.max_length`` are no longer normalized, since they cannot pass validation anyway.
Created python-django tracking bugs for this issue: Affects: openstack-rdo [bug 2249282]
Created python-django tracking bugs for this issue: Affects: epel-all [bug 2249286] Affects: fedora-all [bug 2249288] Created python-django16 tracking bugs for this issue: Affects: epel-all [bug 2249284] Created python-django3 tracking bugs for this issue: Affects: epel-all [bug 2249285] Affects: fedora-all [bug 2249287]