Closed
Bug 1609053
Opened 4 years ago
Closed 4 years ago
[wpt-sync] Sync PR 21156 - Update pillow to 6.2.2
Categories
(Testing :: web-platform-tests, task, P4)
Testing
web-platform-tests
Tracking
(firefox74 fixed)
RESOLVED
FIXED
mozilla74
Tracking | Status | |
---|---|---|
firefox74 | --- | fixed |
People
(Reporter: mozilla.org, Unassigned)
References
()
Details
(Whiteboard: [wptsync downstream])
Sync web-platform-tests PR 21156 into mozilla-central (this bug is closed when the sync is complete).
PR: https://github.com/web-platform-tests/wpt/pull/21156
Details from upstream follow.
pyup-bot <github-bot@pyup.io> wrote:
Update pillow to 6.2.2
This PR updates pillow from 6.2.1 to 6.2.2.
<details>
<summary>Changelog</summary>### 6.2.2 ``` ------------------
This is the last Pillow release to support Python 2.7 3642
Overflow checks for realloc for tiff decoding. CVE TBD
[wiredfool, radarhere]Catch SGI buffer overrun. CVE TBD
[radarhere]Catch PCX P mode buffer overrun. CVE TBD
[radarhere]Catch FLI buffer overrun. CVE TBD
[radarhere]Raise an error for an invalid number of bands in FPX image. CVE-2019-19911
[wiredfool, radarhere]
</details>
<details>
<summary>Links</summary>
- PyPI: https://pypi.org/project/pillow
- Changelog: https://pyup.io/changelogs/pillow/
- Homepage: https://python-pillow.org
</details>
Assignee | ||
Comment 1•4 years ago
|
||
PR 21156 applied with additional changes from upstream: 8ddf4a72f1fa07cbc82067c21979030595d66960
Assignee | ||
Comment 2•4 years ago
|
||
PR 21156 applied with additional changes from upstream: 3e7db31aea33e81f53320f47b97b2f8e9a061074
Assignee | ||
Comment 3•4 years ago
|
||
Pushed to try https://treeherder.mozilla.org/#/jobs?repo=try&revision=91ef46c864a1251d5a6b5f2d9bbc0d2ce8a4a689
Pushed by wptsync@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/6ce6c805638b [wpt PR 21156] - Update pillow to 6.2.2, a=testonly
Assignee | ||
Comment 5•4 years ago
|
||
Test result changes from PR not available.
Comment 6•4 years ago
|
||
bugherder |
Status: NEW → RESOLVED
Closed: 4 years ago
status-firefox74:
--- → fixed
Resolution: --- → FIXED
Target Milestone: --- → mozilla74
You need to log in
before you can comment on or make changes to this bug.
Description
•