search

infiniflow / ragflow

RAGFlow is an open-source RAG (Retrieval-Augmented Generation) engine based on deep document understanding.
https://ragflow.io
Apache License 2.0
10.08k stars 974 forks source link

upgrade version fix security bug #1173

Closed rickywu closed 1 week ago

rickywu commented 1 week ago

What problem does this PR solve?

due to security problem, need updagre to fix, see bellow

Type of change

Name version CVE upgrade version
PyMySQL 1.1.0 CVE-2024-36039 1.1.1
Werkzeug 3.0.1 CVE-2024-34069 3.0.3
aiohttp 3.9.3 CVE-2024-30251 3.9.4
pillow 10.2.0 CVE-2024-28219 10.3.0