From d1cb3e8254e7f2b6d68bb2f1eea8ad5beaa3902e Mon Sep 17 00:00:00 2001
From: Matt Westcott <matt@west.co.tt>
Date: Fri, 10 Jul 2020 16:06:03 +0100
Subject: [PATCH] Expand Pillow dependency to include 7.x

This allows users on the 2.7 LTS branch to upgrade Pillow to address [CVE-2020-10379](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10379), as Pillow 6.x is EOL (https://github.com/python-pillow/Pillow/issues/4750).
---
 setup.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/setup.py b/setup.py
index 0b407c45890a..db293d9a14b3 100755
--- a/setup.py
+++ b/setup.py
@@ -27,7 +27,7 @@
     "django-treebeard>=4.2.0,<5.0",
     "djangorestframework>=3.7.4,<4.0",
     "draftjs_exporter>=2.1.5,<3.0",
-    "Pillow>=4.0.0,<7.0.0",
+    "Pillow>=4.0.0,<8.0.0",
     "beautifulsoup4>=4.5.1,<4.6.1",
     "html5lib>=0.999,<2",
     "Unidecode>=0.04.14,<2.0",