mirrors/meta-openembedded
1
0
Fork 0
mirror of https://github.com/openembedded/meta-openembedded.git synced 2026-06-18 19:20:39 +00:00
Code Issues Projects Releases Wiki Activity

python3-pillow: fix CVE-2022-22815, 22816, 22817

Browse Source 
Backport three patches from 9.0.0 upstream to fix CVES.

Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
This commit is contained in:
Trevor Gamblin
2022-01-28 13:51:00 -05:00
committed by Armin Kuster
parent b5a9b02a9e
commit 23598caeaf
4 changed files with 185 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta-python/recipes-devtools/python/python3-pillow_8.2.0.bb
+3
View File
@@ -11,6 +11,9 @@ SRC_URI = "git://github.com/python-pillow/Pillow.git;branch=8.2.x;protocol=https
file://0001-Limit-sprintf-modes-to-10-characters.patch \
file://0001-Use-snprintf-instead-of-sprintf.patch \
file://0001-Raise-ValueError-if-color-specifier-is-too-long.patch \
file://0001-Initialize-coordinates-to-zero.patch \
file://0001-Handle-case-where-path-count-is-zero.patch \
file://0001-Restrict-builtins-for-ImageMath.eval.patch \
"
SRCREV ?= "e0e353c0ef7516979a9aedce3792596649ce4433"