Skip to content

Update dependency Pillow to v9.0.1 (develop)

RenovateBot requested to merge renovate/develop-pillow-9.x into develop

This MR contains the following updates:

Package Type Update Change
Pillow (source, changelog) dependencies patch ==9.0.0 -> ==9.0.1

Release Notes



Compare Source

  • In show_file, use os.remove to remove temporary images. CVE-2022-24303 #​6010 [radarhere, hugovk]

  • Restrict builtins within lambdas for ImageMath.eval. CVE-2022-22817 #​6009 [radarhere]


📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

  • If you want to rebase/retry this MR, click this checkbox.

This MR has been generated by Renovate Bot.

Merge request reports