py3-pillow: CVE-2021-23437
CVE-2021-23437 was reported 7-Sep-2021, a day-0 high-sev:
The package pillow from 0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.
Edge repo has 8.1.x at this time. 3.14 repo has 8.2.0-r0.