Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Scheduled monthly dependency update for November #7

Closed
wants to merge 6 commits into from

Conversation

pyup-bot
Copy link
Collaborator

@pyup-bot pyup-bot commented Nov 1, 2017

Updates

Here's a list of all the updates bundled in this pull request. I've added some links to make it easier for you to find all the information you need.

django 1.10.7 » 1.10.8 PyPI | Changelog | Homepage
Pillow 3.1.0 » 4.3.0 PyPI | Changelog | Homepage
django-allauth 0.31.0 » 0.34.0 PyPI | Changelog | Repo
mistune 0.7.1 » 0.8 PyPI | Changelog | Repo

Changelogs

django 1.10.7 -> 1.10.8

1.10.8

===========================

September 5, 2017

Django 1.10.8 fixes a security issue in 1.10.7.

CVE-2017-12794: Possible XSS in traceback section of technical 500 debug page

In older versions, HTML autoescaping was disabled in a portion of the template
for the technical 500 debug page. Given the right circumstances, this allowed
a cross-site scripting attack. This vulnerability shouldn't affect most
production sites since you shouldn't run with DEBUG = True (which makes
this page accessible) in your production settings.

===========================

Pillow 3.1.0 -> 4.3.0

4.3.0


  • Fix warning on pointer cast in isblock 2775, 2778
    [cgohlke]
  • Doc: Added macOS High Sierra tested Pillow version 2777
    [radarhere]
  • Use correct Windows handle type on 64 bit in imagingcms 2774
    [cgohlke]

  • 64 Bit Windows fix for block storage 2773
    [cgohlke]

  • Fix "expression result unused" warning 2764
    [radarhere]
  • Add 16bit Read/Write and RLE read support to SgiImageFile 2769
    [jbltx, wiredfool]
  • Block & array hybrid storage 2738
    [homm]
  • Common seek frame position check 1849
    [radarhere]
  • Doc: Add note about aspect ratio to Image thumbnail script 2281
    [wilsonge]
  • Fix ValueError: invalid version number '1.0.0rc1' in scipy release candidate 2771
    [cgohlke]
  • Unfreeze requirements.txt 2766
    [hugovk]
  • Test: ResourceWarning tests 2756
    [hugovk]
  • Use n_frames to determine is_animated if possible 2315
    [radarhere]
  • Doc: Corrected parameters in documentation 2768
    [radarhere]
  • Avoid unnecessary Image operations 1891
    [radarhere]
  • Added register_extensions method 1860
    [radarhere]
  • Fix TIFF support for I;16S, I;16BS, and I;32BS rawmodes 2748
    [wiredfool]
  • Fixed doc syntax in ImageDraw 2752
    [radarhere]
  • Fixed support for building on Windows/msys2. Added Appveyor CI coverage for python3 on msys2 2476
    [wiredfool]
  • Fix ValueError in Exif/Tiff IFD 2719
    [wiredfool]
  • Use pathlib2 for Path objects on Python < 3.4 2291
    [asergi]
  • Export only required properties in unsafe_ptrs 2740
    [homm]
  • Alpha composite fixes 2709
    [homm]
  • Faster Transpose operations, added 'Transverse' option 2730
    [homm]
  • Deprecate ImageOps undocumented functions gaussian_blur, gblur, unsharp_mask, usm and box_blur in favor of ImageFilter implementations 2735
    [homm]
  • Dependencies: Updated freetype to 2.8.1 2741
    [radarhere]
  • Bug: Player skipped first image 2742
    [radarhere]
  • Faster filter operations for Kernel, Gaussian, and Unsharp Mask filters 2679
    [homm]
  • EPS: Add showpage to force rendering of some EPS images 2636
    [kaplun]
  • DOC: Fix type of palette parameter in Image.quantize. 2703
    [kkopachev]
  • DOC: Fix Ico docs to match code 2712
    [hugovk]
  • Added file pointer save to SpiderImagePlugin 2647
    [radarhere]
  • Add targa version 2 footer 2713
    [jhultgre]
  • Removed redundant lines 2714
    [radarhere]
  • Travis CI: Use default pypy/pypy3 2721
    [hugovk]
  • Fix for SystemError when rendering an empty string, added in 4.2.0 2706
    [wiredfool]
  • Fix for memory leaks in font handling added in 4.2.0 2634
    [wiredfool]
  • Tests: cleanup, more tests. Fixed WMF save handler 2689
    [radarhere]
  • Removed debugging interface for Image.core.grabclipboard 2708
    [radarhere]
  • Doc syntax fix 2710
    [radarhere]
  • Faster packing and unpacking for RGB, LA, and related storage modes 2693
    [homm]
  • Use RGBX rawmode for RGB JPEG images where possible 1989
    [homm]
  • Remove palettes from non-palette modes in _new 2702
    [wiredfool]
  • Delete transparency info when convert'ing RGB/L to RGBA 2633
    [olt]
  • Code tweaks to ease type annotations 2687
    [neiljp]
  • Fixed incorrect use of 's' to byteslike object 2691
    [wiredfool]
  • Fix JPEG subsampling labels for subsampling=2 2698
    [homm]
  • Region of interest (box) for resampling 2254
    [homm]
  • Basic support for Termux (android) in setup.py 2684
    [wiredfool]
  • Bug: Fix Image.fromarray for numpy.bool type. 2683
    [wiredfool]
  • CI: Add Fedora 24 and 26 to Docker tests
    [wiredfool]
  • JPEG: Fix ZeroDivisionError when EXIF contains invalid DPI (0/0). 2667
    [vytisb]
  • Depends: Updated openjpeg to 2.2.0 2669
    [radarhere]
  • Depends: Updated Tk Tcl to 8.6.7 2668
    [radarhere]
  • Depends: Updated libimagequant to 2.10.2 2660
    [radarhere]
  • Test: Added test for ImImagePlugin tell() 2675
    [radarhere]
  • Test: Additional tests for SGIImagePlugin 2659
    [radarhere]
  • New Image.getchannel method 2661
    [homm]
  • Remove unused im.copy2 and core.copy methods 2657
    [homm]
  • Fast Image.merge() 2677
    [homm]
  • Fast Image.split() 2676
    [homm]
  • Fast image allocation 2655
    [homm]
  • Storage cleanup 2654
    [homm]
  • FLI: Use frame count from FLI header 2674
    [radarhere]
  • Test: Test animated FLI file 2650
    [hugovk]
  • Bug: Fixed uninitialized memory in bc5 decoding 2648
    [ifeherva]
  • Moved SgiImagePlugin save error to before the start of write operations 2646
    [radarhere]
  • Move createfontdatachunk.py so isn't installed globally 2645
    [hugovk]
  • Bug: Fix unexpected keyword argument 'align' 2641
    [hugovk]
  • Add newlines to error message for clarity 2640
    [hugovk]
  • Docs: Updated redirected URL 2637
    [radarhere]
  • Bug: Fix JPEG DPI when EXIF is invalid 2632
    [wiredfool]
  • Bug: Fix for font getsize on empty string 2624
    [radarhere]
  • Docs: Improved ImageDraw documentation 2626
    [radarhere]
  • Docs: Corrected alpha_composite args documentation 2627
    [radarhere]
  • Docs: added the description of the filename attribute to images.rst 2621
    [dasdachs]
  • Dependencies: Updated libimagequant to 2.10.1 2616
    [radarhere]
  • PDF: Renamed parameter to not shadow built-in dict 2612
    [kijeong]

4.2.1


  • CI: Fix version specification and test on CI for PyPy/Windows 2608
    [wiredfool]

4.2.0


  • Doc: Clarified Image.save:append_images documentation 2604
    [radarhere]
  • CI: Amazon Linux and Centos6 docker images added to TravisCI 2585
    [wiredfool]
  • Image.alpha_composite added 2595
    [wiredfool]
  • Complex Text Support 2576
    [ShamsaHamed, Fahad-Alsaidi, wiredfool]
  • Added threshold parameter to ImageDraw.floodfill 2599
    [nediamond]
  • Added dBATCH parameter to ghostscript command 2588
    [radarhere]
  • JPEG: Adjust buffer size when icc_profile > MAXBLOCK 2596
    [Darou]
  • Specify Pillow Version in one place 2517
    [wiredfool]
  • CI: Change the owner of the TRAVIS_BUILD_DIR, fixing broken docker runs 2587
    [wiredfool]
  • Fix truncated PNG loading for some images, Fix memory leak on truncated PNG images. 2541, 2598
    [homm]
  • Add decompression bomb check to Image.crop 2410
    [wiredfool]
  • ImageFile: Ensure that the err_code variable is initialized in case of exception. 2363
    [alexkiro]
  • Tiff: Support append_images for saving multipage TIFFs 2406
    [blochl]
  • Doc: Clarify that draft is only implemented for JPEG and PCD 2409
    [wiredfool]
  • Test: MicImagePlugin 2447
    [hugovk]
  • Use round() instead of floor() to eliminate zero coefficients in resample 2558
    [homm]
  • Remove deprecated code 2549
    [hugovk]
  • Added append_images to PDF saving 2526
    [radarhere]
  • Remove unused function core image function new_array 2548
    [hugovk]
  • Remove unnecessary calls to dict.keys() 2551
    [jdufresne]
  • Add more ImageDraw.py tests and remove unused Draw.c code 2533
    [hugovk]
  • Test: More tests for ImageMorph 2554
    [hugovk]
  • Test: McIDAS area file 2552
    [radarhere]
  • Update Feature Detection 2520
    [wiredfool]
  • CI: Update pypy on TravisCI 2573
    [hugovk]
  • ImageMorph: Fix wrong expected size of MRLs read from disk 2561
    [dov]
  • Docs: Update install docs for FreeBSD 2546
    [wiredfool]
  • Build: Ignore OpenJpeg 1.5 on FreeBSD 2544
    [melvyn-sopacua]
  • Remove 'not yet implemented' methods from PIL 1.1.4 2538
    [hugovk]
  • Dependencies: Update FreeType to 2.8, LibTIFF to 4.0.8 and libimagequant to 2.9.1 2535 2537 2540
    [radarhere]
  • Raise TypeError and not also UnboundLocalError in ImageFile.Parser() 2525
    [joshblum]
  • Test: Use Codecov for coverage 2528
    [hugovk]
  • Use PNG for Image.show() 2527
    [HinTak, wiredfool]
  • Remove WITH_DEBUG compilation flag 2522
    [wiredfool]
  • Fix return value on parameter parse error in _webp.c 2521
    [adw1n]
  • Set executable flag on scripts with shebang line 2295
    [radarhere]
  • Flake8 2460
    [radarhere]
  • Doc: Release Process Changes 2516
    [wiredfool]
  • CI: Added region for s3 deployment on appveyor 2515
    [wiredfool]
  • Doc: Updated references to point to existing files 2507
    [radarhere]
  • Return copy on Image crop if crop dimensions match the image 2471
    [radarhere]
  • Test: Optimize CI speed 2464, 2466
    [hugovk]

4.1.1


  • Fix for file with DPI in EXIF but not metadata, and XResolution is an int rather than tuple 2484
    [hugovk]
  • Docs: Removed broken download counter badge 2487
    [hugovk]
  • Docs: Fixed rst syntax error 2477
    [thebjorn]

4.1.0


  • Close files after loading if possible 2330
    [homm, wiredfool]
  • Fix Image Access to be reloadable when embedding the Python interpreter 2296
    [wiredfool, cgohlke]
  • Fetch DPI from EXIF if not specified in JPEG header 2449, 2472
    [hugovk]
  • Removed winbuild checksum verification 2468
    [radarhere]
  • Git: Set ContainerIO test file as binary 2469
    [cgohlke]
  • Remove superfluous import of FixTk 2455
    [cgohlke)
  • Fix import of tkinter/Tkinter 2456
    [cgohlke)
  • Pure Python Decoders, including Python decoder to fix for MSP images 1938
    [wiredfool, hugovk]
  • Reorganized GifImagePlugin, fixes 2314. 2374
    [radarhere, wiredfool]
  • Doc: Reordered operating systems in Compatibility Matrix 2436
    [radarhere]
  • Test: Additional tests for BurfStub, Eps, Container, GribStub, IPTC, Wmf, XVThumb, ImageDraw, ImageMorph ImageShow 2425
    [radarhere]
  • Health fixes 2437
    [radarhere]
  • Test: Correctness tests ContainerIO, XVThumbImagePlugin, BufrStubImagePlugin, GribStubImagePlugin, FitsStubImagePlugin, Hdf5StubImagePlugin, PixarImageFile, PsdImageFile 2443, 2442, 2441, 2440, 2431, 2430, 2428, 2427
    [hugovk]
  • Remove unused imports 1822
    [radarhere]
  • Replaced KeyError catch with dictionary get method 2424
    [radarhere]
  • Test: Removed unrunnable code in test_image_toqimage 2415
    [hugovk]
  • Removed use of spaces in TIFF kwargs names, deprecated in 2.7 1390
    [radarhere]
  • Removed deprecated ImageDraw setink, setfill, setfont methods 2220
    [jdufresne]
  • Send unwanted subprocess output to /dev/null 2253
    [jdufresne]
  • Fix division by zero when creating 0x0 image from numpy array 2419
    [hugovk]
  • Test: Added matrix convert tests 2381
    [hugovk]
  • Replaced broken URL to partners.adobe.com 2413
    [radarhere]
  • Removed unused private functions in setup.py and build_dep.py 2414
    [radarhere]
  • Test: Fixed Qt tests for QT5 and saving 1 bit PNG 2394
    [wiredfool]
  • Test: docker builds for Arch and Debian Stretch 2394
    [wiredfool]
  • Updated libwebp to 0.6.0 on appveyor 2395
    [radarhere]
  • More explicit error message when saving to a file with invalid extension 2399
    [ces42]
  • Docs: Update some http urls to https 2403
    [hugovk]
  • Preserve aux/alpha channels when performing Imagecms transforms 2355
    [gunjambi]
  • Test linear and radial gradient effects 2382
    [hugovk]
  • Test ImageDraw.Outline and and ImageDraw.Shape 2389
    [hugovk]
  • Added PySide to ImageQt documentation 2392
    [radarhere]
  • BUG: Empty image mode no longer causes a crash 2380
    [evalapply]
  • Exclude .travis and contents from manifest 2386
    [radarhere]
  • Remove 'MIT-like' from license 2145
    [wiredfool]
  • Tests: Add tests for several Image operations 2379
    [radarhere]
  • PNG: Moved iCCP chunk before PLTE chunk when saving as PNG, restricted chunks known value/ordering 2347
    [radarhere]
  • Default to inch-interpretation for missing ResolutionUnit in TiffImagePlugin 2365
    [lambdafu]
  • Bug: Fixed segfault when using ImagingTk on pypy Issue 2376, 2359.
    [wiredfool]
  • Bug: Fixed Integer overflow using ImagingTk on 32 bit platforms 2359
    [wiredfool, QuLogic]
  • Removed PIL 1.0 era TK readme that concerns Windows 95/NT 2360
    [wiredfool]
  • Prevent nose -v printing docstrings 2369
    [hugovk]
  • Replaced absolute PIL imports with relative imports 2349
    [radarhere]
  • Added context managers for file handling 2307
    [radarhere]
  • Expose registered file extensions in Image 2343
    [iggomez, radarhere]
  • Make mode descriptor cache initialization thread-safe. 2351
    [gunjambi]
  • Updated Windows test dependencies: Freetype 2.7.1, zlib 1.2.11 2331, 2332, 2357
    [radarhere]
  • Followed upstream pngquant packaging reorg to libimagquant 2354
    [radarhere]
  • Fix invalid string escapes 2352
    [hugovk]
  • Add test for crop operation with no argument 2333
    [radarhere]

4.0.0


  • Refactor out postprocessing hack to load_end in PcdImageFile
    [wiredfool]
  • Add center and translate option to Image.rotate. 2328
    [lambdafu]
  • Test: Relax WMF test condition, fixes 2323
    [wiredfool]
  • Allow 0 size images, Fixes 2259, Reverts to pre-3.4 behavior.
    [wiredfool]
  • SGI: Save uncompressed SGI/BW/RGB/RGBA files 2325
    [jbltx]
  • Depends: Updated pngquant to 2.8.2 2319
    [radarhere]
  • Test: Added correctness tests for opening SGI images 2324
    [wiredfool]
  • Allow passing a list or tuple of individual frame durations when saving a GIF 2298
    [Xdynix]
  • Unified different GIF optimize conditions 2196
    [radarhere]
  • Build: Refactor dependency installation 2305
    [hugovk]
  • Test: Add python 3.6 to travis, tox 2304
    [hugovk]
  • Test: Fix coveralls coverage for Python+C 2300
    [hugovk]
  • Remove executable bit and shebang from OleFileIO.py 2308
    [jwilk, radarhere]
  • PyPy: Buffer interface workaround 2294
    [wiredfool]
  • Test: Switch to Ubuntu Trusty 14.04 on Travis CI 2294
  • Remove vendored version of olefile Python package in favor of upstream 2199
    [jdufresne]
  • Updated comments to use print as a function 2234
    [radarhere]
  • Set executable flag on selftest.py, setup.py and added shebang line 2282, 2277
    [radarhere, homm]
  • Test: Increase epsilon for FreeType 2.7 as rendering is slightly different. 2286
    [hugovk]
  • Test: Faster assert_image_similar 2279
    [homm]
  • Removed depreciated internal "stretch" method 2276
    [homm]
  • Removed the handles_eof flag in decode.c 2223
    [wiredfool]
  • Tiff: Fix for writing Tiff to BytesIO using libtiff 2263
    [wiredfool]
  • Doc: Design docs 2269
    [wiredfool]
  • Test: Move tests requiring libtiff to test_file_libtiff 2273
    [wiredfool]
  • Update Maxblock heuristic 2275
    [wiredfool]
  • Fix for 2-bit palette corruption 2274
    [pdknsk, wiredfool]
  • Tiff: Update info.icc_profile when using libtiff reader. 2193
    [lambdafu]
  • Test: Fix bug in test_ifd_rational_save when libtiff is not available 2270
    [ChristopherHogan]
  • ICO: Only save relevant sizes 2267
    [hugovk]
  • ICO: Allow saving .ico files of 256x256 instead of 255x255 2265
    [hugovk]
  • Fix TIFFImagePlugin ICC color profile saving. 2087
    [cskau]
  • Doc: Improved description of ImageOps.deform resample parameter 2256
    [radarhere]
  • EMF: support negative bounding box coordinates 2249
    [glexey]
  • Close file if opened in WalImageFile 2216
    [radarhere]
  • Use Image._new() instead of _makeself() 2248
    [homm]
  • SunImagePlugin fixes 2241
    [wiredfool]
  • Use minimal scale for jpeg drafts 2240
    [homm]
  • Updated dependency scripts to use FreeType 2.7, OpenJpeg 2.1.2, WebP 0.5.2 and Tcl/Tk 8.6.6 2235, 2236, 2237, 2290, 2302
    [radarhere]
  • Fix "invalid escape sequence" bytestring warnings in Python 3.6 2186
    [timgraham]
  • Removed support for Python 2.6 and Python 3.2 2192
    [jdufresne]
  • Setup: Raise custom exceptions when required/requested dependencies are not found 2213
    [wiredfool]
  • Use a context manager in FontFile.save() to ensure file is always closed 2226
    [jdufresne]
  • Fixed bug in saving to fp-objects in Python >= 3.4 2227
    [radarhere]
  • Use a context manager in ImageFont._load_pilfont() to ensure file is always closed 2232
    [jdufresne]
  • Use generator expressions instead of list comprehension 2225
    [jdufresne]
  • Close file after reading in ImagePalette.load() 2215
    [jdufresne]
  • Changed behaviour of default box argument for paste method to match docs 2211
    [radarhere]
  • Add support for another BMP bitfield 2221
    [jmerdich]
  • Added missing top-level test main 2222
    [radarhere]
  • Replaced range(len()) 2197
    [radarhere]
  • Fix for ImageQt Segfault, fixes 1370 2182
    [wiredfool]
  • Setup: Close file in setup.py after finished reading 2208
    [jdufresne]
  • Setup: optionally use pkg-config (when present) to detect dependencies 2074
    [garbas]
  • Search for tkinter first in builtins 2210
    [matthew-brett]
  • Tests: Replace try/except/fail pattern with TestCase.assertRaises() 2200
    [jdufresne]
  • Tests: Remove unused, open files at top level of tests 2188
    [jdufresne]
  • Replace type() equality checks with isinstance 2184
    [jdufresne]
  • Doc: Move ICO out of the list of read-only file formats 2180
    [alexwlchan]
  • Doc: Fix formatting, too-short title underlines and malformed table 2175
    [hugovk]
  • Fix BytesWarnings 2172
    [jdufresne]
  • Use Integer division to eliminate deprecation warning. 2168
    [mastermatt]
  • Doc: Update compatibility matrix
    [daavve, wiredfool]

3.4.2


  • Fix Resample coefficient calculation 2162
    [homm]

3.4.1


  • Allow lists as arguments for Image.new() 2149
    [homm]
  • Fix fix for map.c overflow 2151 (also in 3.3.3)
    [wiredfool]

3.4.0


  • Removed Image.core.open_ppm, added negative image size checks in Image.py. 2146
    [wiredfool]
  • Windows build: fetch dependencies from pillow-depends 2095
    [hugovk]
  • Add TIFF save_all writer. 2140
    [lambdafu, vashek]
  • Move libtiff fd duplication to _load_libtiff 2141
    [sekrause]
  • Speed up GIF save optimization step, fixes 2093. 2133
    [wiredfool]
  • Fix for ImageCms Segfault, Issue 2037. 2131
    [wiredfool]
  • Make Image.crop an immediate operation, not lazy. 2138
    [wiredfool]
  • Skip empty values in ImageFileDirectory 2024
    [homm]
  • Force reloading palette when using mmap in ImageFile. 2139
    [lambdafu]
  • Fix "invalid escape sequence" warning in Python 3.6 2136
    [timgraham]
  • Update documentation about drafts 2137
    [radarhere]
  • Converted documentation parameter format, comments to docstrings 2021
    [radarhere]
  • Fixed typos 2128 2142
    [radarhere]
  • Renamed references to OS X to macOS 2125 2130
    [radarhere]
  • Use truth value when checking for progressive and optimize option on save 2115, 2129
    [radarhere]
  • Convert DPI to ints when saving as JPEG 2102
    [radarhere]
  • Added append_images parameter to GIF saving 2103
    [radarhere]
  • Speedup paste with masks up to 80% 2015
    [homm]
  • Rewrite DDS decoders in C, add DXT3 and BC7 decoders 2068
    [Mischanix]
  • Fix PyArg_ParseTuple format in getink() 2070
    [arjennienhuis]
  • Fix saving originally missing TIFF tags. 2111
    [anntzer]
  • Allow pathlib.Path in Image.open on Python 2.7 2110
    [patricksnape]
  • Use modern base64 interface over deprecated 2121
    [hugovk]
  • ImageColor.getrgb hexadecimal RGBA 2114
    [homm]
  • Test fix for bigendian machines 2092
    [wiredfool]
  • Resampling lookups, trailing empty coefficients, precision 2008
    [homm]
  • Add (un)packing between RGBA and BGRa 2057
    [arjennienhuis]
  • Added return for J2k (and fpx) Load to return a pixel access object 2061
    [wiredfool]
  • Skip failing numpy tests on Pypy <= 5.3.1 2090
    [arjennienhuis]
  • Show warning when trying to save RGBA image as JPEG 2010
    [homm]
  • Respect pixel centers during transform 2022
    [homm]
  • TOC for supported file formats 2056
    [polarize]
  • Fix conversion of bit images to numpy arrays Fixes 350, 2058
    [matthew-brett]
  • Add ImageOps.scale to expand or contract a PIL image by a factor 2011
    [vlmath]
  • Flake8 fixes 2050
    [hugovk]
  • Updated freetype to 2.6.5 on Appveyor builds 2035
    [radarhere]
  • PCX encoder fixes 2023, pr 2041
    [homm]
  • Docs: Windows console prompts are > 2031
    [techtonik]
  • Expose Pillow package version as PIL.version 2027
    [techtonik]
  • Add Box and Hamming filters for resampling 1959
    [homm]
  • Retain a reference to core image object in PyAccess 2009
    [homm]

3.3.3


  • Fix fix for map.c overflow 2151
    [wiredfool]

3.3.2


  • Fix negative image sizes in Storage.c 2105
    [wiredfool]
  • Fix integer overflow in map.c 2105
    [wiredfool]

3.3.1


  • Fix C90 compilation error for Tcl / Tk rewrite 2033
    [matthew-brett]
  • Fix image loading when rotating by 0 deg 2052
    [homm]

3.3.0


  • Fixed enums for Resolution Unit and Predictor in TiffTags.py 1998
    [wiredfool]
  • Fix issue converting P mode to LA 1986
    [didrix]
  • Moved test_j2k_overflow to check_j2k_overflow, prevent DOS of our 32bit testing machines 1995
    [wiredfool]
  • Skip CRC checks in PNG files when LOAD_TRUNCATED_IMAGES is enabled 1991
    [kkopachev]
  • Added CMYK mode for opening EPS files 1826
    [radarhere]
  • Docs: OSX build instruction clarification 1994
    [wiredfool]
  • Docs: Filter comparison table 1993
    [homm]
  • Removal of pthread based Incremental.c, new interface for file decoders/encoders to access the python file. Fixes assorted J2k Hangs. 1934
    [wiredfool]
  • Skip unnecessary passes when resizing 1954
    [homm]
  • Removed duplicate code in ImagePalette 1832
    [radarhere]
  • test_imagecms: Reduce precision of extended info due to 32 bit machine precision 1990
    [AbdealiJK]
  • Binary Tiff Metadata/ICC profile. 1988
    [wiredfool]
  • Ignore large text blocks in PNG if LOAD_TRUNCATED_IMAGES is enabled 1970
    [homm]
  • Replace index = index+1 in docs with +=1
    [cclauss]
  • Skip extra 0xff00 in jpeg 1977
    [kkopachev]
  • Use bytearray for palette mutable storage 1985
    [radarhere, wiredfool]
  • Added additional uint modes for Image.fromarray, more extensive tests of fromarray 1984
    [mairsbw, wiredfool]
  • Fix for program importing PyQt4 when PyQt5 also installed 1942
    [hugovk]
  • Changed depends/install_*.sh urls to point to github pillow-depends repo 1983
    [wiredfool]
  • Allow ICC profile from encoderinfo while saving PNGs 1909
    [homm]
  • Fix integer overflow on ILP32 systems (32-bit Linux). 1975
    [lambdafu]
  • Change function declaration to match Tcl_CmdProc type 1966
    [homm]
  • Integer overflow checks on all calls to *alloc 1781
    [wiredfool]
  • Change equals method on Image so it short circuits 1967
    [mattBoros]
  • Runtime loading of TCL/TK libraries, eliminating build time dependency. 1932
    [matthew-brett]
  • Cleanup of transform methods 1941
    [homm]
  • Fix "Fatal Python error: UNREF invalid object" in debug builds 1936
    [wiredfool]
  • Setup fixes for Alpine linux 1937
    [wiredfool]
  • Split resample into horizontal + vertical passes 1933
    [homm]
  • Box blur with premultiplied alpha 1914
    [homm]
  • Add libimagequant support in quantize() 1889
    [rr-]
  • Added internal Premultiplied luminosity (La) mode 1912
    [homm]
  • Fixed point integer resample 1881
    [homm]
  • Removed docs/BUILDME script 1924
    [radarhere]
  • Moved comments to docstrings 1926
    [hugovk]
  • Include Python.h before wchar.h so _GNU_SOURCE is set consistently 1906
    [hugovk]
  • Updated example decoder in documentation 1899
    [radarhere]
  • Added support for GIF comment extension 1896
    [radarhere]
  • Removed support for pre- 1.5.2 list form of Image info in Image.new 1897
    [radarhere]
  • Fix typos in TIFF tags 1918
    [radarhere]
  • Skip tests that require libtiff if it is not installed 1893 (fixes 1866)
    [wiredfool]
  • Skip test when icc profile is not available, fixes 1887
    [doko42]
  • Make deprecated functions raise NotImplementedError instead of Exception. 1862, 1890
    [daniel-leicht, radarhere]
  • Replaced os.system with subprocess.call in setup.py 1879
    [radarhere]
  • Corrected Image show documentation 1886
    [radarhere]
  • Added check for executable permissions to ImageShow 1880
    [radarhere]
  • Fixed tutorial code and added explanation 1877
    [radarhere]
  • Added OS X support for ImageGrab grabclipboard 1837
    [radarhere]
  • Combined duplicate code in ImageTk 1856
    [radarhere]
  • Added --disable-platform-guessing option to setup.py build extension 1861
    [angeloc]
  • Fixed loading Transparent PNGs with a transparent black color 1840
    [olt]
  • Add support for LA mode in Image.fromarray 1865
    [pierriko]
  • Make ImageFile load images in read-only mode 1864
    [hdante]
  • Added _accept hook for XVThumbImagePlugin 1853
    [radarhere]
  • Test TIFF with LZW compression 1855, TGA RLE file 1854
    [hugovk]
  • Improved SpiderImagePlugin help text 1863
    [radarhere]
  • Updated Sphinx project description 1870
    [radarhere]
  • Remove support for Python 3.0 from _imaging.c 1851
    [radarhere]
  • Jpeg qtables are unsigned chars 1814, 1921
    [thebostik]
  • Added additional EXIF tags 1841, TIFF Tags 1821
    [radarhere]
  • Changed documentation to refer to ImageSequence Iterator 1833
    [radarhere]
  • Fix Fedora prerequisites in installation docs, depends script 1842
    [living180]
  • Added _accept hook for PixarImagePlugin 1843
    [radarhere]
  • Removed outdated scanner classifier 1823
    [radarhere]
  • Combined identical error messages in _imaging 1825
    [radarhere]
  • Added debug option for setup.py to trace header and library finding 1790
    [wiredfool]
  • Fix doc building on travis 1820, 1844
    [wiredfool]
  • Fix for DIB/BMP images 1813, 1847
    [wiredfool]
  • Add PixarImagePlugin file extension 1809
    [radarhere]
  • Catch struct.errors when verifying png files 1805
    [wiredfool]
  • SpiderImagePlugin: raise an error when seeking in a non-stack file 1794
    [radarhere, jmichalon]
  • Added support for 2/4 bpp Tiff grayscale images 1789
    [zwhfly]
  • Removed unused variable from selftest 1788
    [radarhere]
  • Added warning for as_dict method (deprecated in 3.0.0) 1799
    [radarhere]
  • Removed powf support for older Python versions 1784
    [radarhere]
  • Health fixes 1625 1903
    [radarhere]

3.2.0


  • Added install docs for Fedora 23 and FreeBSD 1729, 1739, 1792
    [koobs, zandermartin, wiredfool]
  • Fixed TIFF multiframe load when the frames have different compression types 1782
    [radarhere, geka000]
  • Added copy method to Image 1772
    [radarhere]
  • Updated dates in PIL license in OleFileIO README 1787
    [radarhere]
  • Corrected Tiff tag names 1786
    [radarhere]
  • Fixed documented name of JPEG property 1783
    [radarhere]
  • Fixed UnboundLocalError when loading a corrupt jpeg2k file 1780
    [wiredfool]
  • Fixed integer overflow in path.c 1773
    [wiredfool, nedwill]
  • Added debug to command line help text for pilprint 1766
    [radarhere]
  • Expose many more fields in ICC Profiles 1756
    [lambdafu]
  • Documentation changes, URL update, transpose, release checklist
    [radarhere]
  • Fixed saving to nonexistant files specified by pathlib.Path objects 1748 (fixes 1747)
    [radarhere]
  • Round Image.crop arguments to the nearest integer 1745 (fixes 1744)
    [hugovk]
  • Fix uninitialized variable warning in _imaging.c:getink 1663 (fixes 486)
    [wiredfool]
  • Disable multiprocessing install on cygwin 1700 (fixes 1690)
    [wiredfool]
  • Fix the error reported when libz is not found 1764
    [wiredfool]
  • More general error check to avoid Symbol not found: _PyUnicodeUCS2_AsLatin1String on OS X 1761
    [wiredfool]
  • Added py35 to tox envlist 1724
    [radarhere]
  • Fix EXIF tag name typos 1736
    [zarlant, radarhere]
  • Updated freetype to 2.6.3, Tk/Tcl to 8.6.5 and 8.5.19 1725, 1752
    [radarhere]
  • Add a loader for the FTEX format from Independence War 2: Edge of Chaos 1688
    [jleclanche]
  • Improved alpha_composite documentation 1698
    [radarhere]
  • Extend ImageDraw.text method to pass on multiline_text method specific arguments 1647
    [radarhere]
  • Allow ImageSequence to seek to zero 1686
    [radarhere]
  • ImageSequence Iterator is now an iterator 1649
    [radarhere]
  • Updated windows test builds to jpeg9b 1673
    [radarhere]
  • Fixed support for .gbr version 1 images, added support for version 2 in GbrImagePlugin 1653
    [wiredfool]
  • Clarified which YCbCr format is used 1677
    [radarhere]
  • Added TiffTags documentation, Moved windows build documentation to winbuild/ 1667
    [wiredfool]
  • Add tests for OLE file based formats 1678
    [radarhere]
  • Add TIFF IFD test 1671
    [radarhere]
  • Add a basic DDS image plugin with more tests 1654
    [jleclanche, hugovk, wiredfool]
  • Fix incorrect conditional in encode.c 1638
    [manisandro]

3.1.2


  • Fixed an integer overflow in Jpeg2KEncode.c causing a buffer overflow. CVE-2016-3076
    [wiredfool]

3.1.1


  • Fixed an integer overflow in Resample.c causing writes in the Python heap.
    [nedwill]
  • Fixed a buffer overflow in PcdDecode.c causing a segfault when opening PhotoCD files. CVE-2016-2533
    [wiredfool]
  • Fixed a buffer overflow in FliDecode.c causing a segfault when opening FLI files. CVE-2016-0775
    [wiredfool]
  • Fixed a buffer overflow in TiffDecode.c causing an arbitrary amount of memory to be overwritten when opening a specially crafted invalid TIFF file. CVE-2016-0740
    [wiredfool]

django-allauth 0.31.0 -> 0.34.0

0.34.0


Security notice

  • The "Set Password" view did not properly check whether or not the user already
    had a usable password set. This allowed an attacker to set the password
    without providing the current password, but only in case the attacker already
    gained control over the victim's session.

Note worthy changes

  • New provider: Meetup.

0.33.0


Note worthy changes

  • Security: password reset tokens are now prevented from being leaked through
    the password reset URL.
  • New providers: Patreon, Authentiq, Dataporten.
  • Dropbox has been upgraded to API V2.
  • New translation: Norwegian.

Backwards incompatible changes

  • Dropped support for Django 1.9.

0.32.0


Note worthy changes

  • Improved AJAX support: the account management views (change/set password,
    manage e-mail addresses and social connections) now support AJAX GET requests.
    These views hand over all the required data for you to build your frontend
    application upon.
  • New providers: Dwolla, Trello.
  • Shopify: support for per-user access mode.

Backwards incompatible changes

  • In previous versions, the views only responded with JSON responses when
    issuing AJAX requests of type POST. Now, the views also respond in JSON when
    making AJAX GET requests.
  • The structure of the response for AJAX requests has changed. Previously, it
    contained a form_errors key containing all form validation errors, if any.
    Now, it contains a form key that describes the complete form, including
    the fields. Field specific errors are placed in
    form.fields[&#39;some_field&#39;].errors, non-field errors in form.errors.
  • The parameters passed to the Facebook JS SDK FB.init() method used to contain
    cookie, status, and xfbml, all set to true. These parameters
    are no longer explicitly passed. You can use the newly introduced INIT_PARAMS
    provider setting to provide your own values.

mistune 0.7.1 -> 0.8

0.8

Released on Oct. 26, 2017

  • Remove non breaking spaces preprocessing
  • Remove rev and rel attribute for footnotes
  • Fix bypassing XSS vulnerability by junorouse

This version is strongly recommended, since it fixed
a security issue.

0.7.4

Released on Mar. 14, 2017

  • Fix escape_link method by Marcos Ojeda
  • Handle block HTML with no content by David Baumgold
  • Use expandtabs for tab
  • Fix escape option for text renderer
  • Fix HTML attribute regex pattern

0.7.3

Released on Jun. 28, 2016

  • Fix strikethrough regex
  • Fix HTML attribute regex
  • Fix close tag regex

0.7.2

Released on Feb. 26, 2016

  • Fix hard_wrap options on renderer.
  • Fix emphasis regex pattern
  • Fix base64 image link 80_.
  • Fix link security per 87_.

.. _80: lepture/mistune#80
.. _87: lepture/mistune#87

That's it for now!

Happy merging! 🤖

@pyup-bot
Copy link
Collaborator Author

pyup-bot commented Dec 1, 2017

Closing this in favor of #8

@pyup-bot pyup-bot closed this Dec 1, 2017
@vladimirmyshkovski vladimirmyshkovski deleted the pyup-scheduled-update-11-01-2017 branch December 1, 2017 15:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant