bug#47259: python-pillow-simd package vulnerable to at least CVE-2021-25

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#47259: python-pillow-simd package vulnerable to at least CVE-2021-25

From:	Maxim Cournoyer
Subject:	bug#47259: python-pillow-simd package vulnerable to at least CVE-2021-25293
Date:	Tue, 22 Mar 2022 22:57:55 -0400
User-agent:	Gnus/5.13 (Gnus v5.13) Emacs/27.2 (gnu/linux)

Hi Léo,

Léo Le Bouter <lle-bout@zaclys.net> writes:

> Hello!
>
> pillow-simd is a fork of pillow (
> https://github.com/uploadcare/pillow-simd), it's currently still at
> version 7.x and it does not seem like it backports security patches
> from pillow.

Thanks for the heads-up; our package is currently at 9.0.0, and I've
just updated it to 9.0.0.post1.

Closing.

Maxim

[Prev in Thread]

Current Thread

[Next in Thread]

bug#47259: python-pillow-simd package vulnerable to at least CVE-2021-25293, Maxim Cournoyer <=
- bug#47259: python-pillow-simd package vulnerable to at least CVE-2021-25293, Maxime Devos, 2022/03/23
  - bug#47259: python-pillow-simd package vulnerable to at least CVE-2021-25293, Maxim Cournoyer, 2022/03/23

Prev by Date: bug#53368: [PATCH] Amended wording in description of .guix-authorizations file
Next by Date: bug#47144: security patching of 'patch' package
Previous by thread: bug#53368: [PATCH] Amended wording in description of .guix-authorizations file
Next by thread: bug#47259: python-pillow-simd package vulnerable to at least CVE-2021-25293
Index(es):
- Date
- Thread