Django 1.11.6 版本发行说明

2017 年 10 月 5 日

Django 1.11.6 修复了 1.11.5 中的几个漏洞。

漏洞修复

  • Made the CharField form field convert whitespace-only values to the empty_value when strip is enabled (#28555).
  • Fixed crash when using the name of a model's autogenerated primary key (id) in an Index's fields (#28597).
  • Fixed a regression in Django 1.9 where a custom view error handler such as handler404 that accesses csrf_token could cause CSRF verification failures on other pages (#28488).