[4.0.x] Fixed CVE-2023-24580 -- Prevented DoS with too many uploaded files.

Thanks to Jakob Ackermann for the report.
author: Markus Holtermann <info@markusholtermann.eu> 2022-12-13 10:27:39 +0100
committer: Carlton Gibson <carlton.gibson@noumenal.es> 2023-02-07 10:36:32 +0100
commit: 83f1ea83e4553e211c1c5a0dfc197b66d4e50432 (patch)
tree: b6d1c0c5b7dc19b61d8af4c192f9b6e7b99b0a38 /docs/ref/exceptions.txt
parent: e5aecded4de78b8ce2048490fc9b12258e8b7623 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/docs/ref/exceptions.txt b/docs/ref/exceptions.txt
index 8e8fe4347a..025b9dab01 100644
--- a/docs/ref/exceptions.txt
+++ b/docs/ref/exceptions.txt
@@ -84,12 +84,17 @@ Django core exception classes are defined in ``django.core.exceptions``.
     * ``SuspiciousMultipartForm``
     * ``SuspiciousSession``
     * ``TooManyFieldsSent``
+    * ``TooManyFilesSent``
 
     If a ``SuspiciousOperation`` exception reaches the ASGI/WSGI handler level
     it is logged at the ``Error`` level and results in
     a :class:`~django.http.HttpResponseBadRequest`. See the :doc:`logging
     documentation </topics/logging/>` for more information.
 
+.. versionchanged:: 3.2.18
+
+    ``SuspiciousOperation`` is raised when too many files are submitted.
+
 ``PermissionDenied``
 --------------------
author	Markus Holtermann <info@markusholtermann.eu>	2022-12-13 10:27:39 +0100
committer	Carlton Gibson <carlton.gibson@noumenal.es>	2023-02-07 10:36:32 +0100
commit	83f1ea83e4553e211c1c5a0dfc197b66d4e50432 (patch)
tree	b6d1c0c5b7dc19b61d8af4c192f9b6e7b99b0a38 /docs/ref/exceptions.txt
parent	e5aecded4de78b8ce2048490fc9b12258e8b7623 (diff)