[1.4.x] Added a default limit to the maximum number of forms in a formset.

This is a security fix. Disclosure and advisory coming shortly.
author: Aymeric Augustin <aymeric.augustin@m4x.org> 2013-02-12 11:22:41 +0100
committer: Carl Meyer <carl@oddbird.net> 2013-02-19 10:37:54 -0700
commit: 0cc350a896f70ace18280410eb616a9197d862b0 (patch)
tree: fd6c30263e36aa3a22058e9ffd82132d9bb760a7 /docs/topics/forms/formsets.txt
parent: 0e7861aec73702f7933ce2a93056f7983939f0d6 (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/docs/topics/forms/formsets.txt b/docs/topics/forms/formsets.txt
index b524c24ad2..03fa317c1e 100644
--- a/docs/topics/forms/formsets.txt
+++ b/docs/topics/forms/formsets.txt
@@ -108,8 +108,10 @@ If the value of ``max_num`` is greater than the number of existing
 objects, up to ``extra`` additional blank forms will be added to the formset,
 so long as the total number of forms does not exceed ``max_num``.
 
-A ``max_num`` value of ``None`` (the default) puts no limit on the number of
-forms displayed. Please note that the default value of ``max_num`` was changed
+A ``max_num`` value of ``None`` (the default) puts a high limit on the number
+of forms displayed (1000). In practice this is equivalent to no limit.
+
+Please note that the default value of ``max_num`` was changed
 from ``0`` to ``None`` in version 1.2 to allow ``0`` as a valid value.
 
 Formset validation
author	Aymeric Augustin <aymeric.augustin@m4x.org>	2013-02-12 11:22:41 +0100
committer	Carl Meyer <carl@oddbird.net>	2013-02-19 10:37:54 -0700
commit	0cc350a896f70ace18280410eb616a9197d862b0 (patch)
tree	fd6c30263e36aa3a22058e9ffd82132d9bb760a7 /docs/topics/forms/formsets.txt
parent	0e7861aec73702f7933ce2a93056f7983939f0d6 (diff)