Bugs fixes in "python-imaging"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2014-9601 | Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is | 2017-03-13 |
| CVE | CVE-2016-9190 | Pillow before 3.3.2 allows context-dependent attackers to execute arbitrary code by using the "crafted image file" approach, related to an "Insecure | 2017-03-13 |
| CVE | CVE-2016-9189 | Pillow before 3.3.2 allows context-dependent attackers to obtain sensitive information by using the "crafted image file" approach, related to an "Int | 2017-03-13 |
| CVE | CVE-2014-9601 | Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is | 2017-03-13 |
| CVE | CVE-2016-9190 | Pillow before 3.3.2 allows context-dependent attackers to execute arbitrary code by using the "crafted image file" approach, related to an "Insecure | 2017-03-13 |
| CVE | CVE-2016-9189 | Pillow before 3.3.2 allows context-dependent attackers to obtain sensitive information by using the "crafted image file" approach, related to an "Int | 2017-03-13 |
| CVE | CVE-2014-3596 | The getCN function in Apache Axis 1.4 and earlier does not properly verify that the server hostname matches a domain name in the subject's Common Nam | 2016-09-15 |
| CVE | CVE-2016-2533 | Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow before 3.1.1 and Python Imaging Library (PIL) 1.1.7 and earlier allows remo | 2016-09-15 |
| CVE | CVE-2016-0775 | Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of servic | 2016-09-15 |
| CVE | CVE-2014-3596 | The getCN function in Apache Axis 1.4 and earlier does not properly verify that the server hostname matches a domain name in the subject's Common Nam | 2016-09-15 |
| CVE | CVE-2016-2533 | Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow before 3.1.1 and Python Imaging Library (PIL) 1.1.7 and earlier allows remo | 2016-09-15 |
| CVE | CVE-2016-0775 | Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of servic | 2016-09-15 |
| CVE | CVE-2014-1933 | sensitive filename information on commandline visible | 2014-04-15 |
| CVE | CVE-2014-1932 | insecure use of /tmp | 2014-04-15 |
| CVE | CVE-2014-1933 | sensitive filename information on commandline visible | 2014-04-15 |
| CVE | CVE-2014-1932 | insecure use of /tmp | 2014-04-15 |
About
-
Send Feedback to @ubuntu_updates
