python-pillow/Pillow
1
1
Fork 0
mirror of https://github.com/python-pillow/Pillow.git synced 2025-02-28 18:10:33 +03:00
Code Issues Packages Projects Releases Wiki Activity

Update docs/releasenotes/7.1.0.rst

Browse Source 
Co-authored-by: Hugo van Kemenade <1324225+hugovk@users.noreply.github.com>
This commit is contained in:
Jeffrey A. Clark 2024-03-15 10:03:19 -04:00 committed by GitHub
parent 45975e482d
commit 4438305a95
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
docs/releasenotes/7.1.0.rst
View File

@ -29,7 +29,8 @@ In ``libImaging/Jpeg2KDecode.c`` in Pillow before 7.1.0, there are multiple out-
:cve:`2020-11538`: Buffer overflow in SGI-RLE decoding :cve:`2020-11538`: Buffer overflow in SGI-RLE decoding
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
In ``libImaging/SgiRleDecode.c`` in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than CVE-2020-5311. In ``libImaging/SgiRleDecode.c`` in Pillow through 7.0.0, a number of out-of-bounds
reads exist in the parsing of SGI image files, a different issue than :cve:`2020-5311`.
API Changes API Changes
=========== ===========