UbuntuUpdates.org

Package "pillow"

Name: pillow

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • Dummy transitional package
  • Dummy transitional package
  • Dummy transitional package
  • Dummy transitional package

Latest version: 2.3.0-1ubuntu3
Release: trusty (14.04)
Level: base
Repository: universe

Links



Other versions of "pillow" in Trusty

Repository Area Version
base main 2.3.0-1ubuntu3
security universe 2.3.0-1ubuntu3.4
security main 2.3.0-1ubuntu3.4
updates universe 2.3.0-1ubuntu3.4
updates main 2.3.0-1ubuntu3.4

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.3.0-1ubuntu3 2014-03-31 23:07:17 UTC

  pillow (2.3.0-1ubuntu3) trusty; urgency=medium

  * SECURITY UPDATE: insecure use of temporary files
    - debian/patches/CVE-2014-193x.patch: use tempfile.mkstemp() in
      PIL/EpsImagePlugin.py, PIL/Image.py, PIL/IptcImagePlugin.py,
      PIL/JpegImagePlugin.py.
    - CVE-2014-1932
    - CVE-2014-1933
 -- Marc Deslauriers <email address hidden> Mon, 31 Mar 2014 10:07:00 -0400

Source diff to previous version
CVE-2014-1932 insecure use of /tmp
CVE-2014-1933 sensitive filename information on commandline visible

Version: 2.3.0-1ubuntu2 2014-03-23 18:07:32 UTC

  pillow (2.3.0-1ubuntu2) trusty; urgency=medium

  * No-change rebuild to drop Python 3.3 support.
 -- Matthias Klose <email address hidden> Sun, 23 Mar 2014 15:28:42 +0000




About   -   Send Feedback to @ubuntu_updates