From: Chee Yang Lee <[email protected]>

bump gitpython and pillow to version with fixes for these CVEs

pillow: CVE-2022-22817 CVE-2022-24303 CVE-2022-45198

gitpython: CVE-2022-24439

Signed-off-by: Chee Yang Lee <[email protected]>
---
 requirements.txt | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 77b1aa9..1f4975e 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -16,10 +16,10 @@ django-reversion-compare==0.14.1
 django-simple-captcha==0.5.14
 djangorestframework==3.13.1
 gitdb==4.0.9
-GitPython==3.1.26
+GitPython==3.1.30
 kombu==5.2.3
 mysqlclient==2.1.0
-Pillow==9.0.0
+Pillow==9.2.0
 pytz==2021.3
 six==1.16.0
 smmap==5.0.0
-- 
2.34.1

-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.
View/Reply Online (#58968): https://lists.yoctoproject.org/g/yocto/message/58968
Mute This Topic: https://lists.yoctoproject.org/mt/96217756/21656
Group Owner: [email protected]
Unsubscribe: https://lists.yoctoproject.org/g/yocto/unsub 
[[email protected]]
-=-=-=-=-=-=-=-=-=-=-=-

Reply via email to