This release addresses several security problems.
Note
More information about this vulnerability included in database record 2022-24303
If the path to the temporary directory on Linux or macOS contained a space, this would break removal of the temporary image file after im.show() (and related actions), and potentially remove an unrelated file. This has been present since PIL.
Note
More information about this vulnerability included in database record 2022-22817
While Pillow 9.0 restricted top-level builtins available to :pyPIL.ImageMath.eval, it did not prevent builtins available to lambda expressions. These are now also restricted.
Pillow 9.0 added support for xdg-open as an image viewer, but there have been reports that the temporary image file was removed too quickly to be loaded into the final application. A delay has been added.