Lucene search
Gentoo FoundationMGASA-2015-0039HistoryJan 28, 2015 - 12:08 a.m.
Updated python-pillow packages fix CVE-2014-9601
2015-01-2800:08:29
Gentoo Foundation
advisories.mageia.org
9
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.018 Low
EPSS
Percentile
88.0%
Updated python-pillow packages fix security vulnerability: Pillow before 2.7.0 and 2.6.2 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed (CVE-2014-9601).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 4 | noarch | python-pillow | < 2.6.2-1.1 | python-pillow-2.6.2-1.1.mga4 |
Related
prion
prion
Code injection
2015-01-16 16:59:00
ubuntucve
ubuntucve
CVE-2014-9601
2015-01-16 00:00:00
openvas
openvas
Fedora Update for python-pillow FEDORA-2015-0667
2015-01-22 00:00:00
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2163)
2021-07-07 00:00:00
Mageia: Security Advisory (MGASA-2015-0039)
2022-01-28 00:00:00
github
github
Pillow denial of service via PNG bomb
2022-05-14 02:05:56
cve
cve
CVE-2014-9601
2015-01-16 16:59:00
fedora
fedora
[SECURITY] Fedora 21 Update: python-pillow-2.6.1-2.fc21
2015-01-21 23:07:12
osv
osv
PYSEC-2015-16
2015-01-16 16:59:00
Pillow denial of service via PNG bomb
2022-05-14 02:05:56
nessus
nessus
Fedora 21 : python-pillow-2.6.1-2.fc21 (2015-0667)
2015-01-22 00:00:00
EulerOS Virtualization 3.0.2.2 : python-pillow (EulerOS-SA-2021-2163)
2021-07-06 00:00:00
EulerOS Virtualization 3.0.6.6 : python-pillow (EulerOS-SA-2021-1515)
2021-03-04 00:00:00
debiancve
debiancve
CVE-2014-9601
2015-01-16 16:59:00
ubuntu
ubuntu
Python Imaging Library vulnerabilities
2017-03-13 00:00:00
Pillow vulnerabilities
2017-03-13 00:00:00
Pillow vulnerabilities
2016-09-27 00:00:00
securityvulns
securityvulns
pillow multiple security vulnerabilities
2015-04-19 00:00:00
[ MDVSA-2015:099 ] python-pillow
2015-04-19 00:00:00
amazon
amazon
Important: python-pillow
2023-06-05 16:39:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.018 Low
EPSS
Percentile
88.0%
Related for MGASA-2015-0039