Ubuntu Security Notice 4902-1 - Dennis Brinkrolf discovered that Django incorrectly handled certain filenames. A remote attacker could possibly use this issue to create or overwrite files in unexpected directories.
2fb40698adaa4bed99b71e8648084646de91e6b714f5ce5948c518eead6b35f9