biolab / orange3-imageanalytics

🍊 :rice_scene: Orange3 add-on for dealing with image related tasks

GNU General Public License v3.0

32 stars 42 forks source link

Updated Pillow requirement #161

Closed PrimozGodec closed 5 years ago

PrimozGodec commented 5 years ago

Issue

Vulnerable versions: < 6.2.0 Patched version: 6.2.0 An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image.

Description of changes

Updating Pillow to safe version

Includes

[ ] Code changes
[ ] Tests
[ ] Documentation

codecov[bot] commented 5 years ago

Codecov Report

Merging #161 into master will not change coverage. The diff coverage is n/a.

@@           Coverage Diff           @@
##           master     #161   +/-   ##
=======================================
  Coverage   61.65%   61.65%           
=======================================
  Files          13       13           
  Lines        3234     3234           
  Branches      481      481           
=======================================
  Hits         1994     1994           
  Misses       1116     1116           
  Partials      124      124