diff options
| author | Alejandro Zamora <azamora@machinalis.com> | 2017-06-23 12:06:08 -0300 |
|---|---|---|
| committer | Tim Graham <timograham@gmail.com> | 2017-08-12 20:14:14 -0400 |
| commit | 90d7b912b9c451dfdfb38f5f1f598af3b879257f (patch) | |
| tree | 7b326aa7e992124ab2ab5fc2dbc9cafdfa79fc90 /docs/releases | |
| parent | b78d100fa62cd4fbbc70f2bae77c192cb36c1ccd (diff) | |
Fixed #28201 -- Added ProhibitNullCharactersValidator and used it on CharField form field.
Diffstat (limited to 'docs/releases')
| -rw-r--r-- | docs/releases/2.0.txt | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/docs/releases/2.0.txt b/docs/releases/2.0.txt index 36aea3aefc..0b2074ebb9 100644 --- a/docs/releases/2.0.txt +++ b/docs/releases/2.0.txt @@ -318,7 +318,12 @@ URLs Validators ~~~~~~~~~~ -* ... +* The new :class:`.ProhibitNullCharactersValidator` disallows the null + character in the input of the :class:`~django.forms.CharField` form field + and its subclasses. Null character input was observed from vulnerability + scanning tools. Most databases silently discard null characters, but + psycopg2 2.7+ raises an exception when trying to save a null character to + a char/text field with PostgreSQL. .. _backwards-incompatible-2.0: |