9.5.0.1

Security release backporting three upstream CVE fixes to Pillow 9.5.0.

Security

CVE-2023-44271: Added ImageFont.MAX_STRING_LENGTH

To protect against potential DOS attacks when using arbitrary strings as text input, Pillow will now raise a ValueError if the number of characters passed into ImageFont methods is over a certain limit, PIL.ImageFont.MAX_STRING_LENGTH.

This threshold can be changed by setting PIL.ImageFont.MAX_STRING_LENGTH. It can be disabled by setting ImageFont.MAX_STRING_LENGTH = None.

Upstream: python-pillow#7244

CVE-2023-50447: Restricted environment keys for ImageMath.eval()

PIL.ImageMath.eval now raises a ValueError if the expression parameter contains a dictionary key that either contains __ or matches the name of one of the Python builtins.

Upstream: python-pillow#7655

CVE-2024-28219: Use strncpy to avoid buffer overflow

To help prevent potential buffer overflows in _imagingcms.c, strcpy has been replaced with strncpy.

Upstream: python-pillow#7928

PRs merged

• #37 — CVE-2023-44271
• #38 — CVE-2023-50447
• #39 — CVE-2024-28219

ActiveState release of Pillow 6.2.2.8

What's Changed

• CVE-2023-44271 Hand cherry-pick 1fe1bb4 by @rickprice in #34
• CVE-2023-50447 Hand cherry-pick 02c6183 by @rickprice in #35

Full Changelog: 6.2.2.7...6.2.2.8

6.2.2.6

AS Release 6.2.2.6

6.2.2.5

AS Release 6.2.2.5

6.2.2.4

Pillow 6.2.2.4

6.2.2.3

Pillow 6.2.2.3