diff options
| author | Mathieu Velten <mathieuv@matrix.org> | 2023-09-18 15:01:23 +0200 |
|---|---|---|
| committer | Mathieu Velten <mathieuv@matrix.org> | 2023-09-18 15:02:16 +0200 |
| commit | 053155a2af52aa66910e4a22dad60109607b1098 (patch) | |
| tree | 35028a4483bcc17e25ce49580a5a3206665df26f /changelog.d/16347.misc | |
| parent | Bump pillow from 10.0.0 to 10.0.1 (#16344) (diff) | |
| download | synapse-053155a2af52aa66910e4a22dad60109607b1098.tar.xz | |
Mandate Pillow>=10.0.1 because of libwebp CVE (#16347)
Diffstat (limited to 'changelog.d/16347.misc')
| -rw-r--r-- | changelog.d/16347.misc | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/changelog.d/16347.misc b/changelog.d/16347.misc new file mode 100644 index 0000000000..f4f5bfb2de --- /dev/null +++ b/changelog.d/16347.misc @@ -0,0 +1 @@ +Pillow 10.0.1 is now mandatory because of libwebp CVE-2023-4863, since Pillow provides libwebp in the wheels. |