Download
| Alert*
oval:org.secpod.oval:def:21825
The host is installed with Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x before 2.5.2 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a crafted block size. Successful exploitation allows remote attackers to caus ... oval:org.secpod.oval:def:21798 python-imaging is installed oval:org.secpod.oval:def:503564 The Python Imaging Library adds image processing capabilities to your Python interpreter. This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. Security Fix: * python-pillow: improperly restricted operations on memory ... oval:org.secpod.oval:def:601757 Andrew Drake discovered that missing input sanitising in the icns decoder of the Python Imaging Library could result in denial of service if a malformed image is processed. oval:org.secpod.oval:def:703262 python-imaging: Python Imaging Library Python Imaging Library could be made to crash if it received specially crafted input or opened a specially crafted file. oval:org.secpod.oval:def:701928 python-imaging is installed oval:org.secpod.oval:def:701637 python-imaging: Python Imaging Library Python Imaging Library could be made to overwrite or expose files. oval:org.secpod.oval:def:205471 The Python Imaging Library adds image processing capabilities to your Python interpreter. This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. Security Fix: * python-pillow: improperly restricted operations on memory ... oval:org.secpod.oval:def:703284 pillow: Python Imaging Library compatibility layer Pillow could be made to crash if it received specially crafted input or opened a specially crafted file. oval:org.secpod.oval:def:39468 pillow: Python Imaging Library Several security issues were fixed in Pillow. oval:org.secpod.oval:def:52186 pillow: Python Imaging Library Several security issues were fixed in Pillow. oval:org.secpod.oval:def:703290 pillow: Python Imaging Library compatibility layer Details: USN-3090-1 fixed vulnerabilities in Pillow. The patch to fix CVE-2014-9601 caused a regression which resulted in failures when processing certain png images. This update temporarily reverts the security fix for CVE-2014-9601 pending further ... oval:org.secpod.oval:def:51743 pillow: Python Imaging Library Several security issues were fixed in Pillow. oval:org.secpod.oval:def:52810 pillow: Python Imaging Library compatibility layer Details: USN-3090-1 fixed vulnerabilities in Pillow. The patch to fix CVE-2014-9601 caused a regression which resulted in failures when processing certain png images. This update temporarily reverts the security fix for CVE-2014-9601 pending further ... oval:org.secpod.oval:def:703513 pillow: Python Imaging Library Several security issues were fixed in Pillow. oval:org.secpod.oval:def:52809 pillow: Python Imaging Library compatibility layer Pillow could be made to crash if it received specially crafted input or opened a specially crafted file. oval:org.secpod.oval:def:703515 python-imaging: Python Imaging Library Several security issues were fixed in the Python Imaging Library. |