Skip to content

Commit

Permalink
Merge pull request #7520 from hugovk/CVE-2023-44271
Browse files Browse the repository at this point in the history 
Add CVE-2023-44271 to release notes
  • Loading branch information
@radarhere
radarhere committed Nov 3, 2023
2 parents 1c2f2c7 + 5339c1c commit bee9c59
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions docs/releasenotes/10.0.0.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -173,8 +173,8 @@ been processed before Pillow started checking for decompression bombs.
Added ImageFont.MAX_STRING_LENGTH
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

To protect against potential DOS attacks when using arbitrary strings as text
input, Pillow will now raise a ``ValueError`` if the number of characters
:cve:`2023-44271`: To protect against potential DOS attacks when using arbitrary strings as text
input, Pillow will now raise a :py:exc:`ValueError` if the number of characters
passed into ImageFont methods is over a certain limit,
:py:data:`PIL.ImageFont.MAX_STRING_LENGTH`.

Expand Down

0 comments on commit bee9c59

Please sign in to comment.