Pillow/docs/releasenotes/8.1.0.rst

8.1.0
-----

Security
========

This release includes security fixes.

* An out-of-bounds read when saving TIFFs with custom metadata through LibTIFF
* An out-of-bounds read when saving a GIF of 1px width

:cve:`2020-35653`: Buffer read overrun in PCX decoding
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

The PCX image decoder used the reported image stride to calculate
the row buffer, rather than calculating it from the image size. This issue dates back
to the PIL fork. Thanks to Google's `OSS-Fuzz`_ project for finding this.

:cve:`2020-35654`: TIFF out-of-bounds write error
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Out-of-bounds write in ``TiffDecode.c`` when reading corrupt YCbCr
files in some LibTIFF versions (4.1.0/Ubuntu 20.04, but not 4.0.9/Ubuntu 18.04).
In some cases LibTIFF's interpretation of the file is different when reading in RGBA mode,
leading to an out-of-bounds write in ``TiffDecode.c``. This potentially affects Pillow
versions from 6.0.0 to 8.0.1, depending on the version of LibTIFF. This was reported through
`Tidelift`_.

:cve:`2020-35655`: SGI Decode buffer overrun
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

4 byte read overflow in ``SgiRleDecode.c``, where the code was not correctly
checking the offsets and length tables. Independently reported through `Tidelift`_ and Google's
`OSS-Fuzz`_. This vulnerability covers Pillow versions 4.3.0->8.0.1.

.. _Tidelift: https://tidelift.com/subscription/pkg/pypi-pillow?utm_source=pillow&utm_medium=referral&utm_campaign=docs
.. _OSS-Fuzz: https://github.com/google/oss-fuzz

Dependencies
^^^^^^^^^^^^

OpenJPEG in the macOS and Linux wheels has been updated from 2.3.1 to 2.4.0, including
security fixes.

LibTIFF in the macOS and Linux wheels has been updated from 4.1.0 to 4.2.0, including
security fixes discovered by fuzzers.

Deprecations
============

FreeType 2.7
^^^^^^^^^^^^

Support for FreeType 2.7 is deprecated and will be removed in Pillow 9.0.0 (2022-01-02),
when FreeType 2.8 will be the minimum supported.

We recommend upgrading to at least FreeType `2.10.4`_, which fixed a severe
vulnerability introduced in FreeType 2.6 (:cve:`2020-15999`).

.. _2.10.4: https://sourceforge.net/projects/freetype/files/freetype2/2.10.4/

Makefile
^^^^^^^^

The ``install-venv`` target has been deprecated.

API Additions
=============

Append images to ICO
^^^^^^^^^^^^^^^^^^^^

When saving an ICO image, the file may contain versions of the image at different
sizes. By default, Pillow will scale down the main image to create these copies.

With this release, a list of images can be provided to the ``append_images`` parameter
when saving, to replace the scaled down versions. This is the same functionality that
already exists for the ICNS format.

Other Changes
=============

Makefile
^^^^^^^^

The ``co`` target has been removed.

PyPy wheels
^^^^^^^^^^^

Wheels have been added for PyPy 3.7.

PySide6
^^^^^^^

Support has been added for PySide6. If it is installed, it will be used instead of
PyQt5 or PySide2, since it is based on a newer Qt.
Deprecate FreeType 2.7, to be removed in Pillow 9 (2022-01-02) 2020-12-16 19:21:37 +03:00			`8.1.0`
			`-----`

Clean up for #7864 Before back fill, clean up. - Add suggested CVE format to template - Move Security to the top of release notes - Fix headings - Update all existing CVE notes to match template 2024-03-13 21:15:16 +03:00			`Security`
			`========`

			`This release includes security fixes.`

			`* An out-of-bounds read when saving TIFFs with custom metadata through LibTIFF`
			`* An out-of-bounds read when saving a GIF of 1px width`

Fix headers and retro-add notes for #7864 - Include CVE link in title (via @hugovk) - Retro-add release notes for 2.3.2, 2.5.2 for CVE-2014-3589 2024-03-14 20:58:05 +03:00			:cve:`2020-35653`: Buffer read overrun in PCX decoding
			`^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^`
Clean up for #7864 2024-03-13 21:40:00 +03:00
Clean up for #7864 Before back fill, clean up. - Add suggested CVE format to template - Move Security to the top of release notes - Fix headings - Update all existing CVE notes to match template 2024-03-13 21:15:16 +03:00			`The PCX image decoder used the reported image stride to calculate`
			`the row buffer, rather than calculating it from the image size. This issue dates back`
			to the PIL fork. Thanks to Google's `OSS-Fuzz`_ project for finding this.

Fix headers and retro-add notes for #7864 - Include CVE link in title (via @hugovk) - Retro-add release notes for 2.3.2, 2.5.2 for CVE-2014-3589 2024-03-14 20:58:05 +03:00			:cve:`2020-35654`: TIFF out-of-bounds write error
			`^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^`
Clean up for #7864 2024-03-13 21:40:00 +03:00
Clean up for #7864 Before back fill, clean up. - Add suggested CVE format to template - Move Security to the top of release notes - Fix headings - Update all existing CVE notes to match template 2024-03-13 21:15:16 +03:00			Out-of-bounds write in ``TiffDecode.c`` when reading corrupt YCbCr
			`files in some LibTIFF versions (4.1.0/Ubuntu 20.04, but not 4.0.9/Ubuntu 18.04).`
			`In some cases LibTIFF's interpretation of the file is different when reading in RGBA mode,`
			leading to an out-of-bounds write in ``TiffDecode.c``. This potentially affects Pillow
			`versions from 6.0.0 to 8.0.1, depending on the version of LibTIFF. This was reported through`
			`Tidelift`_.

Fix headers and retro-add notes for #7864 - Include CVE link in title (via @hugovk) - Retro-add release notes for 2.3.2, 2.5.2 for CVE-2014-3589 2024-03-14 20:58:05 +03:00			:cve:`2020-35655`: SGI Decode buffer overrun
			`^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^`
Clean up for #7864 2024-03-13 21:40:00 +03:00
Clean up for #7864 Before back fill, clean up. - Add suggested CVE format to template - Move Security to the top of release notes - Fix headings - Update all existing CVE notes to match template 2024-03-13 21:15:16 +03:00			4 byte read overflow in ``SgiRleDecode.c``, where the code was not correctly
			checking the offsets and length tables. Independently reported through `Tidelift`_ and Google's
			`OSS-Fuzz`_. This vulnerability covers Pillow versions 4.3.0->8.0.1.

			`.. _Tidelift: https://tidelift.com/subscription/pkg/pypi-pillow?utm_source=pillow&utm_medium=referral&utm_campaign=docs`
			`.. _OSS-Fuzz: https://github.com/google/oss-fuzz`

			`Dependencies`
			`^^^^^^^^^^^^`

			`OpenJPEG in the macOS and Linux wheels has been updated from 2.3.1 to 2.4.0, including`
			`security fixes.`

			`LibTIFF in the macOS and Linux wheels has been updated from 4.1.0 to 4.2.0, including`
			`security fixes discovered by fuzzers.`

Deprecate FreeType 2.7, to be removed in Pillow 9 (2022-01-02) 2020-12-16 19:21:37 +03:00			`Deprecations`
			`============`

			`FreeType 2.7`
			`^^^^^^^^^^^^`

			`Support for FreeType 2.7 is deprecated and will be removed in Pillow 9.0.0 (2022-01-02),`
			`when FreeType 2.8 will be the minimum supported.`

			We recommend upgrading to at least FreeType `2.10.4`_, which fixed a severe
Replace dependency sphinx-issues with builtin sphinx.ext.extlinks 2023-03-08 19:07:14 +03:00			vulnerability introduced in FreeType 2.6 (:cve:`2020-15999`).
Deprecate FreeType 2.7, to be removed in Pillow 9 (2022-01-02) 2020-12-16 19:21:37 +03:00
			`.. _2.10.4: https://sourceforge.net/projects/freetype/files/freetype2/2.10.4/`

Document #5159 [ci skip] 2021-01-02 03:00:33 +03:00			`Makefile`
			`^^^^^^^^`

Update release notes formatting, links, spelling 2021-03-02 14:16:14 +03:00			The ``install-venv`` target has been deprecated.
Document #5159 [ci skip] 2021-01-02 03:00:33 +03:00
Deprecate FreeType 2.7, to be removed in Pillow 9 (2022-01-02) 2020-12-16 19:21:37 +03:00			`API Additions`
			`=============`

Added release notes for #4568 [ci skip] 2020-12-24 05:13:44 +03:00			`Append images to ICO`
			`^^^^^^^^^^^^^^^^^^^^`
Deprecate FreeType 2.7, to be removed in Pillow 9 (2022-01-02) 2020-12-16 19:21:37 +03:00
Added release notes for #4568 [ci skip] 2020-12-24 05:13:44 +03:00			`When saving an ICO image, the file may contain versions of the image at different`
			`sizes. By default, Pillow will scale down the main image to create these copies.`

			With this release, a list of images can be provided to the ``append_images`` parameter
			`when saving, to replace the scaled down versions. This is the same functionality that`
			`already exists for the ICNS format.`
Deprecate FreeType 2.7, to be removed in Pillow 9 (2022-01-02) 2020-12-16 19:21:37 +03:00
			`Other Changes`
			`=============`

Document #5159 [ci skip] 2021-01-02 03:00:33 +03:00			`Makefile`
			`^^^^^^^^`

Update release notes formatting, links, spelling 2021-03-02 14:16:14 +03:00			The ``co`` target has been removed.
Document #5159 [ci skip] 2021-01-02 03:00:33 +03:00
Documented the addition of PyPy3.7 wheels [ci skip] 2020-12-25 10:08:48 +03:00			`PyPy wheels`
			`^^^^^^^^^^^`
Deprecate FreeType 2.7, to be removed in Pillow 9 (2022-01-02) 2020-12-16 19:21:37 +03:00
Documented the addition of PyPy3.7 wheels [ci skip] 2020-12-25 10:08:48 +03:00			`Wheels have been added for PyPy 3.7.`
Document #5161 [ci skip] 2021-01-02 01:39:04 +03:00
			`PySide6`
			`^^^^^^^`

			`Support has been added for PySide6. If it is installed, it will be used instead of`
			`PyQt5 or PySide2, since it is based on a newer Qt.`