diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0fe9486e3..2fe86657c 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -5,6 +5,7 @@ This project adheres to [Semantic Versioning](http://semver.org/).
 ### [2016-04-14]
 ### Changed
 - Downgrading python-dateutil to version 2.4.2 because pykwalify==1.5.0 (required by HitchTest) use a [pinned version of python-dateutil](https://github.com/Grokzen/pykwalify/blob/1.5.0/setup.py#L31) (@noisy)
+- Update Pillow version to 3.2.0 (security fix) (@luzfcb)
 
 ### [2016-04-12]
 ### Changed
diff --git a/{{cookiecutter.repo_name}}/requirements/base.txt b/{{cookiecutter.repo_name}}/requirements/base.txt
index 836d7241d..305f45bd3 100644
--- a/{{cookiecutter.repo_name}}/requirements/base.txt
+++ b/{{cookiecutter.repo_name}}/requirements/base.txt
@@ -26,7 +26,7 @@ django-floppyforms==1.6.1
 django-model-utils==2.4
 
 # Images
-Pillow==3.1.1
+Pillow==3.2.0
 
 # For user registration, either via email or social
 # Well-built with regular release cycles!