From e10ebf43e12c6e2998abd31ca898fd5998464927 Mon Sep 17 00:00:00 2001
From: Mariusz Felisiak <felisiak.mariusz@gmail.com>
Date: Wed, 23 Oct 2019 15:07:06 +0200
Subject: [PATCH] Bumped minimum Pillow version to 6.2.0 in test requirements.

Pillow < 6.2.0 is vulnerable to CVE-2019-16865.
---
 docs/internals/contributing/writing-code/unit-tests.txt | 2 +-
 tests/requirements/py3.txt                              | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/internals/contributing/writing-code/unit-tests.txt b/docs/internals/contributing/writing-code/unit-tests.txt
index a0c47824da..b693fc2327 100644
--- a/docs/internals/contributing/writing-code/unit-tests.txt
+++ b/docs/internals/contributing/writing-code/unit-tests.txt
@@ -277,7 +277,7 @@ dependencies:
 *  geoip2_
 *  jinja2_ 2.7+
 *  numpy_
-*  Pillow_
+*  Pillow_ 6.2.0+
 *  PyYAML_
 *  pytz_ (required)
 *  pywatchman_
diff --git a/tests/requirements/py3.txt b/tests/requirements/py3.txt
index 831416e240..cfa73f2682 100644
--- a/tests/requirements/py3.txt
+++ b/tests/requirements/py3.txt
@@ -5,7 +5,7 @@ docutils
 geoip2
 jinja2 >= 2.9.2
 numpy
-Pillow != 5.4.0
+Pillow >= 6.2.0
 # pylibmc/libmemcached can't be built on Windows.
 pylibmc; sys.platform != 'win32'
 python-memcached >= 1.59