Django 1.9.5 release notes

    Django 1.9.5 fixes several bugs in 1.9.4.

    • Made ignore filenames that normalize to an empty string to fix crash in MemoryFileUploadHandler on specially crafted user input (#26325).
    • Fixed a race condition in BaseCache.get_or_set() (). It now returns the default value instead of False if there’s an error when trying to add the value to the cache.
    • The forms in contrib.auth no longer strip trailing and leading whitespace from the password fields (#26334). The change requires users who set their password to something with such whitespace after a site updated to Django 1.9 to reset their password. It provides backwards-compatibility for earlier versions of Django.
    • Fixed a memory leak in the cached template loader ().
    • Fixed a regression that caused collectstatic --clear to fail if the storage doesn’t implement path() (#26297).
    • Fixed a regression in that caused spurious warnings in logs on requests missing a trailing slash ().
    • Restored the functionality of the admin’s raw_id_fields in list_editable (#26387).
    • Fixed a regression with abstract model inheritance and explicit parent links ().
    • Fixed JSONField inadvertently escaping its contents when displaying values after failed form validation (#25532).