New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update Pillow Python Library for CVE-2020-35653 #2174
Comments
Not only for security fixes, but also to enable working with python 3.9. I cloned the repo and manually set the pillow version to the currently highest available (8.1) and at least the simple cartPole-v0 problem works as expected. |
We need remove Pillow 7.2.0, and update to Pillow 8.0.0 for Python 3.9.0 ! |
also hitting this with new CVE |
Closed by PR |
Can the Pillow version requirement be updated for security fixes?
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35653
https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1055461
The text was updated successfully, but these errors were encountered: