Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package python-Pillow for openSUSE:Factory checked in at 2022-05-30 12:42:08 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-Pillow (Old) and /work/SRC/openSUSE:Factory/.python-Pillow.new.2254 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-Pillow" Mon May 30 12:42:08 2022 rev:54 rq:979708 version:9.1.1 Changes: -------- --- /work/SRC/openSUSE:Factory/python-Pillow/python-Pillow.changes 2022-04-23 19:45:34.806955778 +0200 +++ /work/SRC/openSUSE:Factory/.python-Pillow.new.2254/python-Pillow.changes 2022-05-30 12:42:24.460267340 +0200 @@ -1,0 +2,7 @@ +Sun May 29 18:37:16 UTC 2022 - Dirk M??ller <dmuel...@suse.com> + +- update to 9.1.1 (bsc#1199713, CVE-2022-30595): + * When reading past the end of a TGA scan line, reduce bytes left. CVE-2022-30595 + * Do not open images with zero or negative height #6269 + +------------------------------------------------------------------- Old: ---- Pillow-9.1.0.tar.gz New: ---- Pillow-9.1.1.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-Pillow.spec ++++++ --- /var/tmp/diff_new_pack.3zfc7B/_old 2022-05-30 12:42:25.560268803 +0200 +++ /var/tmp/diff_new_pack.3zfc7B/_new 2022-05-30 12:42:25.568268814 +0200 @@ -20,7 +20,7 @@ %define skip_python2 1 %define skip_python36 1 Name: python-Pillow -Version: 9.1.0 +Version: 9.1.1 Release: 0 Summary: Python Imaging Library (Fork) License: HPND ++++++ Pillow-9.1.0.tar.gz -> Pillow-9.1.1.tar.gz ++++++ /work/SRC/openSUSE:Factory/python-Pillow/Pillow-9.1.0.tar.gz /work/SRC/openSUSE:Factory/.python-Pillow.new.2254/Pillow-9.1.1.tar.gz differ: char 5, line 1
