Update CHANGES.rst [ci skip]

2024-09-21 03:18:57 +03:00 · 2024-04-01 20:19:46 +11:00 · 2024-04-01 20:19:46 +11:00 · 63cbfcfdea
commit 63cbfcfdea
parent 2776126aa9
1 changed files with 3 additions and 0 deletions
--- a/CHANGES.rst
+++ b/CHANGES.rst
@ -5,6 +5,9 @@ Changelog (Pillow)
 10.3.0 (unreleased)
 -------------------

+- CVE-2024-28219: Use strncpy to avoid buffer overflow #7928
+  [radarhere, hugovk]
+
 - Deprecate eval(), replacing it with lambda_eval() and unsafe_eval() #7927
  [radarhere, hugovk]