You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
upgrade python-pillow to latest version. current version of python-pillow (10.1.0) used by xhtml2pdf has vulnerability (CVE-2023-50447) and is fixed in latest version of python-pillow.
Minimal Example to Reproduce
Scan the xhtml2pdf in Snyk to find the vulnerability.
Expected Behavior
All dependent component should not have any vulnerabilities
Actual Behavior
dependent component have known vulnerabilities
Additional Information
Traceback
System Information
OS version: Windows 11
Python version: 3.10.2
XHTML2PDF version: 0.2.15
The text was updated successfully, but these errors were encountered:
Describe the Bug
upgrade python-pillow to latest version. current version of python-pillow (10.1.0) used by xhtml2pdf has vulnerability (CVE-2023-50447) and is fixed in latest version of python-pillow.
Minimal Example to Reproduce
Scan the xhtml2pdf in Snyk to find the vulnerability.
Expected Behavior
All dependent component should not have any vulnerabilities
Actual Behavior
dependent component have known vulnerabilities
Additional Information
Traceback
System Information
OS version: Windows 11
Python version: 3.10.2
XHTML2PDF version: 0.2.15
The text was updated successfully, but these errors were encountered: