Skip to content

Commit

Permalink
Expand Pillow dependency to include 7.x
Browse files Browse the repository at this point in the history 
This allows users on the 2.7 LTS branch to upgrade Pillow to address [CVE-2020-10379](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10379), as Pillow 6.x is EOL (python-pillow/Pillow#4750).
  • Loading branch information
@gasman
gasman committed Jul 10, 2020
1 parent 3f55039 commit d1cb3e8
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion setup.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@
"django-treebeard>=4.2.0,<5.0",
"djangorestframework>=3.7.4,<4.0",
"draftjs_exporter>=2.1.5,<3.0",
"Pillow>=4.0.0,<7.0.0",
"Pillow>=4.0.0,<8.0.0",
"beautifulsoup4>=4.5.1,<4.6.1",
"html5lib>=0.999,<2",
"Unidecode>=0.04.14,<2.0",
Expand Down

0 comments on commit d1cb3e8

Please sign in to comment.