#32718: Saving a FileField raises SuspiciousFileOperation in some scenarios. -------------------------------------+------------------------------------- Reporter: Jakub Kleň | Owner: Mariusz | Felisiak Type: Bug | Status: assigned Component: Database layer | Version: 2.2 (models, ORM) | Severity: Release blocker | Resolution: Keywords: 3.2.1 file model | Triage Stage: Accepted filefield fieldfile | Has patch: 0 | Needs documentation: 0 Needs tests: 0 | Patch needs improvement: 0 Easy pickings: 0 | UI/UX: 0 -------------------------------------+-------------------------------------
Comment (by Brian Bouterse): Replying to [comment:24 Florian Apolloner]: > There will be another release fixing this and the CVE will probably get adjusted to drop the sentence "Specifically, empty file names and paths with dot segments will be > rejected.". Does the wording make more sense for you then? It does! Thank you so much for making this clearer. > > Will do, testing will certainly help once we have a suitable PR :) I can do that. The description of the plan in Comment 29 sounds great! -- Ticket URL: <https://code.djangoproject.com/ticket/32718#comment:32> Django <https://code.djangoproject.com/> The Web framework for perfectionists with deadlines. -- You received this message because you are subscribed to the Google Groups "Django updates" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-updates+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/django-updates/064.c900bc9e7fafba04ecf9c32fcb3b1b7a%40djangoproject.com.