Added release notes for python-pillow#5567

radarhere · Jul 1, 2021 · d254e58 · d254e58
1 parent 31c4738
commit d254e58
Showing 1 changed file with 7 additions and 0 deletions.
diff --git a/docs/releasenotes/8.3.0.rst b/docs/releasenotes/8.3.0.rst
@@ -82,6 +82,13 @@ format, through the new ``bitmap_format`` argument::
 Security
 ========
 
+Buffer overflow
+^^^^^^^^^^^^^^^
+
+This release addresses :cve:`CVE-2021-34552`. PIL since 1.1.4 and Pillow since 1.0
+allowed parameters passed into a convert function to trigger buffer overflow in
+Convert.c.
+
 Parsing XML
 ^^^^^^^^^^^