Skip to content

Updated constraints due security reasons (triggered on 2026-07-13T14:34:29+00:00 by 56ca24ff3b40f15b82d28d1268e3c794df9ed4ea)#30

Open
github-actions[bot] wants to merge 1 commit into
execfrom
create-pull-request/patch-audit-constraints
Open

Updated constraints due security reasons (triggered on 2026-07-13T14:34:29+00:00 by 56ca24ff3b40f15b82d28d1268e3c794df9ed4ea)#30
github-actions[bot] wants to merge 1 commit into
execfrom
create-pull-request/patch-audit-constraints

Conversation

@github-actions

@github-actions github-actions Bot commented May 20, 2026

Copy link
Copy Markdown

Fixed dependency issues for Python 3.10

Name Version ID Fix Versions Description
pillow 12.2.0 PYSEC-2026-2253 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py _load_bitmaps() read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes() without calling Image._decompression_bomb_check(), allowing crafted PCF font data to cause excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2255 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdf_char() read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new() without calling Image._decompression_bomb_check(), bypassing Pillow's documented decompression bomb protection and allowing excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2257 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.get_command() constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen(..., shell=True), allowing shell metacharacters in the file path to inject arbitrary cmd.exe commands. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2256 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile._open() read image dimensions from the GD 2.x header and stored them in self._size without calling Image._decompression_bomb_check(), allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2254 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/FontFile.py FontFile.compile() assembled per-glyph images into a combined bitmap with Image.new("1", (xsize, ysize)) without calling Image._decompression_bomb_check(), allowing a font to trigger excessive allocation during conversion or saving. This issue is fixed in version 12.3.0.

Fixed dependency issues for Python 3.11

Name Version ID Fix Versions Description
pillow 12.2.0 PYSEC-2026-2253 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py _load_bitmaps() read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes() without calling Image._decompression_bomb_check(), allowing crafted PCF font data to cause excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2255 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdf_char() read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new() without calling Image._decompression_bomb_check(), bypassing Pillow's documented decompression bomb protection and allowing excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2257 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.get_command() constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen(..., shell=True), allowing shell metacharacters in the file path to inject arbitrary cmd.exe commands. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2256 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile._open() read image dimensions from the GD 2.x header and stored them in self._size without calling Image._decompression_bomb_check(), allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2254 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/FontFile.py FontFile.compile() assembled per-glyph images into a combined bitmap with Image.new("1", (xsize, ysize)) without calling Image._decompression_bomb_check(), allowing a font to trigger excessive allocation during conversion or saving. This issue is fixed in version 12.3.0.

Fixed dependency issues for Python 3.12

Name Version ID Fix Versions Description
pillow 12.2.0 PYSEC-2026-2253 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py _load_bitmaps() read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes() without calling Image._decompression_bomb_check(), allowing crafted PCF font data to cause excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2255 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdf_char() read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new() without calling Image._decompression_bomb_check(), bypassing Pillow's documented decompression bomb protection and allowing excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2257 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.get_command() constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen(..., shell=True), allowing shell metacharacters in the file path to inject arbitrary cmd.exe commands. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2256 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile._open() read image dimensions from the GD 2.x header and stored them in self._size without calling Image._decompression_bomb_check(), allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2254 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/FontFile.py FontFile.compile() assembled per-glyph images into a combined bitmap with Image.new("1", (xsize, ysize)) without calling Image._decompression_bomb_check(), allowing a font to trigger excessive allocation during conversion or saving. This issue is fixed in version 12.3.0.

Fixed dependency issues for Python 3.13

Name Version ID Fix Versions Description
pillow 12.2.0 PYSEC-2026-2253 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py _load_bitmaps() read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes() without calling Image._decompression_bomb_check(), allowing crafted PCF font data to cause excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2255 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdf_char() read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new() without calling Image._decompression_bomb_check(), bypassing Pillow's documented decompression bomb protection and allowing excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2257 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.get_command() constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen(..., shell=True), allowing shell metacharacters in the file path to inject arbitrary cmd.exe commands. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2256 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile._open() read image dimensions from the GD 2.x header and stored them in self._size without calling Image._decompression_bomb_check(), allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2254 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/FontFile.py FontFile.compile() assembled per-glyph images into a combined bitmap with Image.new("1", (xsize, ysize)) without calling Image._decompression_bomb_check(), allowing a font to trigger excessive allocation during conversion or saving. This issue is fixed in version 12.3.0.

Fixed dependency issues for Python 3.14

Name Version ID Fix Versions Description
pillow 12.2.0 PYSEC-2026-2253 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py _load_bitmaps() read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes() without calling Image._decompression_bomb_check(), allowing crafted PCF font data to cause excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2255 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdf_char() read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new() without calling Image._decompression_bomb_check(), bypassing Pillow's documented decompression bomb protection and allowing excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2257 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.get_command() constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen(..., shell=True), allowing shell metacharacters in the file path to inject arbitrary cmd.exe commands. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2256 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile._open() read image dimensions from the GD 2.x header and stored them in self._size without calling Image._decompression_bomb_check(), allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This issue is fixed in version 12.3.0.
pillow 12.2.0 PYSEC-2026-2254 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/FontFile.py FontFile.compile() assembled per-glyph images into a combined bitmap with Image.new("1", (xsize, ysize)) without calling Image._decompression_bomb_check(), allowing a font to trigger excessive allocation during conversion or saving. This issue is fixed in version 12.3.0.

Dependency issues not solved for Python 3.9

Name Version ID Fix Versions Description
click 8.1.8 PYSEC-2026-2132 8.3.3 Pallets Click, versions 8.3.2 and below, contain a command injection vulnerability in the click.edit() function, allowing attackers to pass arbitrary OS commands from an unprivileged account.
pillow 11.3.0 PYSEC-2026-165 12.2.0 Pillow is a Python imaging library. Prior to version 12.2.0, if a font advances for each glyph by an exceeding large amount, when Pillow keeps track of the current position, it may lead to an integer overflow. This issue has been patched in version 12.2.0.
pillow 11.3.0 PYSEC-2026-2250 12.2.0 Pillow is a Python imaging library. Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when decoding a FITS image, making them vulnerable to decompression bomb attacks. A specially crafted FITS file could cause unbounded memory consumption, leading to denial of service (OOM crash or severe performance degradation). If users are unable to immediately upgrade, they should only open specific image formats, excluding FITS, as a workaround.
pillow 11.3.0 PYSEC-2026-2253 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py _load_bitmaps() read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes() without calling Image._decompression_bomb_check(), allowing crafted PCF font data to cause excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 11.3.0 PYSEC-2026-2251 12.2.0 Pillow is a Python imaging library. From version 11.2.1 to before version 12.2.0, passing nested lists as coordinates to APIs that accept coordinates such as ImagePath.Path, ImageDraw.ImageDraw.polygon and ImageDraw.ImageDraw.line could cause a heap buffer overflow, as nested lists were recursively unpacked beyond the allocated buffer. Coordinate lists are now validated to contain exactly two numeric coordinates. This issue has been patched in version 12.2.0.
pillow 11.3.0 PYSEC-2026-2255 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/BdfFontFile.py bdf_char() read the BBX width and height field from a BDF font file and passed attacker-controlled dimensions to Image.new() without calling Image._decompression_bomb_check(), bypassing Pillow's documented decompression bomb protection and allowing excessive memory allocation. This issue is fixed in version 12.3.0.
pillow 11.3.0 PYSEC-2026-2257 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, WindowsViewer.get_command() constructed a cmd.exe shell command by directly embedding a file path into an f-string without escaping and passed the result to subprocess.Popen(..., shell=True), allowing shell metacharacters in the file path to inject arbitrary cmd.exe commands. This issue is fixed in version 12.3.0.
pillow 11.3.0 PYSEC-2026-2256 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile._open() read image dimensions from the GD 2.x header and stored them in self._size without calling Image._decompression_bomb_check(), allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This issue is fixed in version 12.3.0.
pillow 11.3.0 PYSEC-2026-2254 12.3.0 Pillow is a Python imaging library. Prior to 12.3.0, PIL/FontFile.py FontFile.compile() assembled per-glyph images into a combined bitmap with Image.new("1", (xsize, ysize)) without calling Image._decompression_bomb_check(), allowing a font to trigger excessive allocation during conversion or saving. This issue is fixed in version 12.3.0.
pillow 11.3.0 PYSEC-2026-2252 12.2.0 Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to memory corruption, potentially resulting in a crash or arbitrary code execution. This issue has been patched in version 12.2.0.
pillow 11.3.0 PYSEC-2026-2249 12.1.1 Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when loading a specially crafted PSD image. This vulnerability is fixed in 12.1.1.
pillow 11.3.0 GHSA-r73j-pqj5-w3x7 12.2.0 ### Impact An attacker can supply a malicious PDF that causes the process to hang indefinitely, consuming 100% CPU and making the application unresponsive. ### Patches Patched version: 12.2.0. PdfParser (introduced in Pillow 4.2.0) follows Prev pointers in PDF trailers to read cross-reference sections. If a trailer's Prev pointer references an offset that has already been processed — either pointing to itself or forming a longer cycle — the parser enters an infinite loop. Pillow now tracks previously processed trailer offsets and raises an error if a cycle is detected. ### Workarounds Use any version but the affected versions: >= 4.2.0, < 12.2.0 ### Resources - Fix: python-pillow/Pillow#9519
requests 2.32.5 PYSEC-2026-2275 2.33.0 Requests is a HTTP library. Prior to version 2.33.0, the requests.utils.extract_zipped_paths() utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without validation. A local attacker with write access to the temp directory could pre-create a malicious file that would be loaded in place of the legitimate one. Standard usage of the Requests library is not affected by this vulnerability. Only applications that call extract_zipped_paths() directly are impacted. Starting in version 2.33.0, the library extracts files to a non-deterministic location. If developers are unable to upgrade, they can set TMPDIR in their environment to a directory with restricted write access.
urllib3 2.6.3 PYSEC-2026-142 2.7.0 urllib3 is an HTTP client library for Python. From 2.6.0 to before 2.7.0, urllib3 could decompress the whole response instead of the requested portion (1) during the second HTTPResponse.read(amt=N) call when the response was decompressed using the official Brotli library or (2) when HTTPResponse.drain_conn() was called after the response had been read and decompressed partially (compression algorithm did not matter here). These issues could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This could result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data) on the client side. This vulnerability is fixed in 2.7.0.
urllib3 2.6.3 PYSEC-2026-141 2.7.0 urllib3 is an HTTP client library for Python. From 1.23 to before 2.7.0, cross-origin redirects followed from the low-level API via ProxyManager.connection_from_url().urlopen(..., assert_same_host=False) still forward these sensitive headers. This vulnerability is fixed in 2.7.0.

@github-actions github-actions Bot changed the title Updated constraints due security reasons (triggered on 2026-05-20T17:18:31+00:00 by 1aa1641b9b51e73a52ef64483672a7dbd0c6bf43) Updated constraints due security reasons (triggered on 2026-05-25T13:15:17+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) May 25, 2026
@github-actions
github-actions Bot force-pushed the create-pull-request/patch-audit-constraints branch from 48e4610 to 5c119d0 Compare May 25, 2026 13:15
@github-actions github-actions Bot changed the title Updated constraints due security reasons (triggered on 2026-05-25T13:15:17+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Updated constraints due security reasons (triggered on 2026-06-01T14:08:03+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Jun 1, 2026
@github-actions
github-actions Bot force-pushed the create-pull-request/patch-audit-constraints branch 2 times, most recently from 20e1082 to 82f8882 Compare June 8, 2026 13:34
@github-actions github-actions Bot changed the title Updated constraints due security reasons (triggered on 2026-06-01T14:08:03+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Updated constraints due security reasons (triggered on 2026-06-08T13:34:06+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Jun 8, 2026
@github-actions
github-actions Bot force-pushed the create-pull-request/patch-audit-constraints branch from 82f8882 to 5a6bbff Compare June 15, 2026 14:13
@github-actions github-actions Bot changed the title Updated constraints due security reasons (triggered on 2026-06-08T13:34:06+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Updated constraints due security reasons (triggered on 2026-06-15T14:12:56+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Jun 15, 2026
@github-actions
github-actions Bot force-pushed the create-pull-request/patch-audit-constraints branch from 5a6bbff to 22741df Compare June 22, 2026 13:57
@github-actions github-actions Bot changed the title Updated constraints due security reasons (triggered on 2026-06-15T14:12:56+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Updated constraints due security reasons (triggered on 2026-06-22T13:57:29+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Jun 22, 2026
@github-actions
github-actions Bot force-pushed the create-pull-request/patch-audit-constraints branch from 22741df to 91cc767 Compare June 29, 2026 13:35
@github-actions github-actions Bot changed the title Updated constraints due security reasons (triggered on 2026-06-22T13:57:29+00:00 by dd7fd6c16384c002fec91bb5a1da6b139ced2d2e) Updated constraints due security reasons (triggered on 2026-06-29T13:34:57+00:00 by 56ca24ff3b40f15b82d28d1268e3c794df9ed4ea) Jun 29, 2026
@github-actions github-actions Bot changed the title Updated constraints due security reasons (triggered on 2026-06-29T13:34:57+00:00 by 56ca24ff3b40f15b82d28d1268e3c794df9ed4ea) Updated constraints due security reasons (triggered on 2026-07-06T13:19:45+00:00 by 56ca24ff3b40f15b82d28d1268e3c794df9ed4ea) Jul 6, 2026
@github-actions
github-actions Bot force-pushed the create-pull-request/patch-audit-constraints branch from 91cc767 to d255d85 Compare July 13, 2026 14:34
@github-actions github-actions Bot changed the title Updated constraints due security reasons (triggered on 2026-07-06T13:19:45+00:00 by 56ca24ff3b40f15b82d28d1268e3c794df9ed4ea) Updated constraints due security reasons (triggered on 2026-07-13T14:34:29+00:00 by 56ca24ff3b40f15b82d28d1268e3c794df9ed4ea) Jul 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant