#32718: Saving a FileField raises SuspiciousFileOperation in some scenarios.
-------------------------------------+-------------------------------------
Reporter: Jakub Kleň | Owner: Mariusz
| Felisiak
Type: Bug | Status: assigned
Component: Database layer | Version: 2.2
(models, ORM) |
Severity: Release blocker | Resolution:
Keywords: 3.2.1 file model | Triage Stage: Accepted
filefield fieldfile |
Has patch: 0 | Needs documentation: 0
Needs tests: 0 | Patch needs improvement: 0
Easy pickings: 0 | UI/UX: 0
-------------------------------------+-------------------------------------
Comment (by Brian Bouterse):
Replying to [comment:24 Florian Apolloner]:
> There will be another release fixing this and the CVE will probably get
adjusted to drop the sentence "Specifically, empty file names and paths
with dot segments will be
> rejected.". Does the wording make more sense for you then?
It does! Thank you so much for making this clearer.
>
> Will do, testing will certainly help once we have a suitable PR :)
I can do that. The description of the plan in Comment 29 sounds great!
--
Ticket URL: <https://code.djangoproject.com/ticket/32718#comment:32>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to django-updates+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-updates/064.c900bc9e7fafba04ecf9c32fcb3b1b7a%40djangoproject.com.
