mirror of
https://github.com/python-pillow/Pillow.git
synced 2024-12-26 18:06:18 +03:00
Merge pull request #6016 from radarhere/releasenotes
Corrected sentence
This commit is contained in:
commit
71839a7623
|
@ -9,7 +9,7 @@ This release addresses several security problems.
|
|||
:cve:`CVE-2022-24303`: If the path to the temporary directory on Linux or macOS
|
||||
contained a space, this would break removal of the temporary image file after
|
||||
``im.show()`` (and related actions), and potentially remove an unrelated file. This
|
||||
been present since PIL.
|
||||
has been present since PIL.
|
||||
|
||||
:cve:`CVE-2022-22817`: While Pillow 9.0 restricted top-level builtins available to
|
||||
:py:meth:`PIL.ImageMath.eval`, it did not prevent builtins available to lambda
|
||||
|
|
Loading…
Reference in New Issue
Block a user