Revisions of python-Pillow
Dominique Leuenberger (dimstar_suse)
accepted
request 877608
from
Dirk Mueller (dirkmueller)
(revision 46)
- update to 8.1.2: - Fix Memory DOS in BLP (CVE-2021-27921), ICNS (CVE-2021-27922) and ICO (CVE-2021-27923) Image Plugins - Update to 8.1.1 Security * CVE-2021-25289: The previous fix for CVE-2020-35654 was insufficent due to incorrect error checking in TiffDecode.c. * CVE-2021-25290: In TiffDecode.c, there is a negative-offset memcpy with an invalid size * CVE-2021-25291: In TiffDecode.c, invalid tile boundaries could lead to an OOB Read in TiffReadRGBATile * CVE-2021-25292: The PDF parser has a catastrophic backtracking regex that could be used as a DOS attack. * CVE-2021-25293: There is an Out of Bounds Read in SGIRleDecode.c, since pillow 4.3.0. There is an Exhaustion of Memory DOS in the ICNS, ICO, and BLP container formats where Pillow did not properly check the reported size of the contained image. These images could cause arbitrariliy large memory allocations. This was reported by Jiayi Lin, Luke Shaffer, Xinran Xie, and Akshay Ajayan of ASU.edu. Other Changes A crash with the feature flags for LibJpeg and Webp on unreleased Python 3.10 has been fixed
Dominique Leuenberger (dimstar_suse)
accepted
request 867671
from
Markéta Machová (mcalabkova)
(revision 45)
Dominique Leuenberger (dimstar_suse)
accepted
request 827807
from
Tomáš Chvátal (scarabeus_iv)
(revision 41)
- Fix build on Leap
Dominique Leuenberger (dimstar_suse)
accepted
request 824544
from
Matej Cepl (mcepl)
(revision 40)
- Remove dependency on pytest-runner as it is unnecessary
Dominique Leuenberger (dimstar_suse)
accepted
request 820507
from
Tomáš Chvátal (scarabeus_iv)
(revision 39)
Dominique Leuenberger (dimstar_suse)
accepted
request 799155
from
Tomáš Chvátal (scarabeus_iv)
(revision 38)
- Update to 7.1.2: * This fixes a regression introduced in 7.1.0 when adding support for APNG files. * When calling seek(n) on a regular PNG where n > 0, it failed to raise an EOFError as it should have done - update to version 7.1.1: * Fix regression seeking and telling PNGs #4512 #4514 [hugovk, radarhere] - changes from version 7.1.0: * Fix multiple OOB reads in FLI decoding #4503 [wiredfool] * Fix buffer overflow in SGI-RLE decoding #4504 [wiredfool, hugovk] * Fix bounds overflow in JPEG 2000 decoding #4505 [wiredfool] * Fix bounds overflow in PCX decoding #4506 [wiredfool] * Fix 2 buffer overflows in TIFF decoding #4507 [wiredfool] * Add APNG support #4243 [pmrowla, radarhere, hugovk] * ImageGrab.grab() for Linux with XCB #4260 [nulano, radarhere] * Added three new channel operations #4230 [dwastberg, radarhere] * Prevent masking of Image reduce method in Jpeg2KImagePlugin #4474 [radarhere, homm] * Added reading of earlier ImageMagick PNG EXIF data #4471 [radarhere] * Fixed endian handling for I;16 getextrema #4457 [radarhere] * Release buffer if function returns prematurely #4381 [radarhere] * Add JPEG comment to info dictionary #4455 [radarhere] * Fix size calculation of Image.thumbnail() #4404 [orlnub123] * Fixed stroke on FreeType < 2.9 #4401 [radarhere] * If present, only use alpha channel for bounding box #4454 [radarhere] * Warn if an unknown feature is passed to features.check() #4438
Dominique Leuenberger (dimstar_suse)
accepted
request 746499
from
Tomáš Chvátal (scarabeus_iv)
(revision 37)
- Update to 6.2.1: * Pillow 6.2.1 supports Python 3.8. - Skip stroke tests as they both fail - Update to 6.2.0: * text stroking * image grab on multi-monitor windows * Full notes: https://pillow.readthedocs.io/en/stable/releasenotes/6.2.0.html
Dominique Leuenberger (dimstar_suse)
accepted
request 691779
from
Tomáš Chvátal (scarabeus_iv)
(revision 34)
- Update to 6.0.0: * Python 2.7 support will be removed in Pillow 7.0.0 #3682 [hugovk] * Add EXIF class #3625 [radarhere] * Add ImageOps exif_transpose method #3687 [radarhere] * Added warnings to deprecated CMSProfile attributes #3615 [hugovk] * Documented reading TIFF multiframe images #3720 [akuchling] * Improved speed of opening an MPO file #3658 [Glandos] * Update palette in quantize #3721 [radarhere] * Improvements to TIFF is_animated and n_frames #3714 [radarhere] * Fixed incompatible pointer type warnings #3754 [radarhere] * Improvements to PA and LA conversion and palette operations #3728 [radarhere] * Consistent DPI rounding #3709 [radarhere] * Change size of MPO image to match frame #3588 [radarhere] * Read Photoshop resolution data #3701 [radarhere] * Ensure image is mutable before saving #3724 [radarhere] * Correct remap_palette documentation #3740 [radarhere] * Promote P images to PA in putalpha #3726 [radarhere] * Allow RGB and RGBA values for new P images #3719 [radarhere] * Fixed TIFF bug when seeking backwards and then forwards #3713 [radarhere] * Cache EXIF information #3498 [Glandos] * Added transparency for all PNG greyscale modes #3744 [radarhere] * Fix deprecation warnings in Python 3.8 #3749 [radarhere] * Fixed GIF bug when rewinding to a non-zero frame #3716 [radarhere] * Only close original fp in __del__ and __exit__ if original fp is exclusive #3683 [radarhere] * Fix BytesWarning in Tests/test_numpy.py #3725 [jdufresne] * Add missing MIME types and extensions #3520 [pirate486743186] * Add I;16 PNG save #3566 [radarhere] * Add support for BMP RGBA bitfield compression #3705 [radarhere] * Added ability to set language for text rendering #3693 [iwsfutcmd] * Only close exclusive fp on Image __exit__ #3698 [radarhere]
Dominique Leuenberger (dimstar_suse)
accepted
request 663293
from
Tomáš Chvátal (scarabeus_iv)
(revision 33)
Dominique Leuenberger (dimstar_suse)
accepted
request 655609
from
Tomáš Chvátal (scarabeus_iv)
(revision 32)
- Fix fdupes call - Fix some version conditionals
Dominique Leuenberger (dimstar_suse)
accepted
request 640655
from
Tomáš Chvátal (scarabeus_iv)
(revision 31)
Dominique Leuenberger (dimstar_suse)
accepted
request 620187
from
Tomáš Chvátal (scarabeus_iv)
(revision 30)
Dominique Leuenberger (dimstar_suse)
accepted
request 594619
from
Tomáš Chvátal (scarabeus_iv)
(revision 29)
Dominique Leuenberger (dimstar_suse)
accepted
request 564507
from
Tomáš Chvátal (scarabeus_iv)
(revision 28)
- Fix build fails on i586 and ppc and others: * pillow-non-iterable.patch
Displaying revisions 21 - 40 of 67