Upgrade pillow version to 9.0.0 #1988
Comments
|
I am trying to push the respective change but I am getting the following error: What am I missing here? Thanks |
|
Hi @mapapa you need to create a fork of the haystack repository and do a pull request from this fork. Here is a GitHub guide on creating the pull request from a fork: https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/proposing-changes-to-your-work-with-pull-requests/creating-a-pull-request-from-a-fork but I think once you have created a fork with your changes you won't need the guide. It's easy from there. You'll see. :) If not, happy to help. |
|
Hi @julian-risch, the issue I am currently facing is that I cannot push my changes to GitHub: I am using my personal access token and https as per latest GitHub setup but with no luck. Any ideas why? Thanks |
|
Hi @mapapa I understand that the problem is still that you are working on the haystack repository itself but not on a fork of it, which you would need to do. Let me walk you through the steps on how to do the changes via your web browser only.
Looking forward to your pull request. :) PS: Of course you can do that all also with your local git instead of using the web browser. Here is another guide about creating a fork with respect to different operating systems: https://docs.github.com/en/get-started/quickstart/fork-a-repo |
|
Amazing, I finally raised the pull request. Thanks. |
Pillow:8.3.2 for python pil/pdfparser.py pdf parsing improper regular expression dos
Pillow package for python contains a flaw in pil/pdfparser.py that is triggered as carriage return characters are not properly handled in a regular expression. this may allow a context-dependent attacker to hang or slow down a python process using the library.
Security source: CVSS V3 from RBS
Fix version: 9.0.0
Thanks
The text was updated successfully, but these errors were encountered: