Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2014-1933

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The 1 JpegImagePlugin.py and 2 EpsImagePlugin.py scripts in Python Image Library PIL 1.1.7 and earlier and Pillow before 2.3.1 uses the names of temporary files...

2.1CVSS7.9AI score0.00448EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/10/05 12:0 a.m.97 views

Amazon Linux 2 : python-pillow (ALAS-2023-2286)

The version of python-pillow installed on the remote host is prior to 2.0.0-23.gitd1c6db8. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2286 advisory. The 1 loaddjpeg function in JpegImagePlugin.py, 2 Ghostscript function in EpsImagePlugin.py, 3 load...

10CVSS8.3AI score0.11959EPSS
Exploits2References8
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2014:0705-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS8.8AI score0.00492EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/04/30 12:0 a.m.282 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2020-1532)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.1AI score0.11959EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2019-2701)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.11959EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2019-2437)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.9AI score0.11959EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/12/04 12:0 a.m.35 views

EulerOS 2.0 SP2 : python-pillow (EulerOS-SA-2019-2437)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size...

10CVSS7AI score0.11959EPSS
Exploits2References11
OpenVAS
OpenVAS
added 2014/11/23 12:0 a.m.29 views

Fedora Update for python-pillow FEDORA-2014-14980

Check the version of python-pillow SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868509";...

10CVSS7.2AI score0.11959EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2014/08/27 12:0 a.m.35 views

Fedora Update for python-pillow FEDORA-2014-9540

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.2AI score0.03587EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/05/23 12:0 a.m.35 views

SuSE 11.3 Security Update : python-imaging (SAT Patch Number 9153)

This python-imaging update fixes the following two security issues : - Fixed insecure temporary file creation and handling CVE-2014-1932 / CVE-2014-1933. bnc863541 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE ...

4.4CVSS8AI score0.00492EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2014/05/09 12:0 a.m.34 views

Mandriva Linux Security Advisory : python-imaging (MDVSA-2014:082)

Updated python-imaging packages fix security vulnerabilities : Jakub Wilk discovered that temporary files were insecurely created via mktemp in the IptcImagePlugin.py, Image.py, JpegImagePlugin.py, and EpsImagePlugin.py files of Python Imaging Library. A local attacker could use this flaw to...

4.4CVSS8.2AI score0.00492EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2014/05/05 12:0 a.m.32 views

Fedora Update for python-pillow FEDORA-2014-5492

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS8.8AI score0.00448EPSS
Exploits1References2
securityvulns
securityvulns
added 2014/05/04 12:0 a.m.77 views

[USN-2168-1] Python Imaging Library vulnerabilities

========================================================================== Ubuntu Security Notice USN-2168-1 April 15, 2014 python-imaging vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...

4.4CVSS0.5AI score0.00492EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2014/05/02 12:0 a.m.38 views

Fedora 19 : python-pillow-2.0.0-13.gitd1c6db8.fc19 (2014-5487)

This update fixes CVE-2014-1933 rhbz 1063663. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

2.1CVSS8AI score0.00448EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2014/04/21 12:0 a.m.27 views

Ubuntu Update for python-imaging USN-2168-1

Check for the Version of python-imaging OpenVAS Vulnerability Test $Id: gbubuntuUSN21681.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for python-imaging USN-2168-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is...

4.4CVSS6.6AI score0.00492EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2014/04/21 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-2168-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.4CVSS8.8AI score0.00492EPSS
Exploits2References2
OSV
OSV
added 2014/04/17 2:55 p.m.8 views

CVE-2014-1933

The 1 JpegImagePlugin.py and 2 EpsImagePlugin.py scripts in Python Image Library PIL 1.1.7 and earlier and Pillow before 2.3.1 uses the names of temporary files on the command line, which makes it easier for local users to conduct symlink attacks by listing the processes...

6AI score
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2014/04/16 12:0 a.m.28 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : python-imaging vulnerabilities (USN-2168-1)

Jakub Wilk discovered that the Python Imaging Library incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files, or gain access to temporary file contents. CVE-2014-1932, CVE-2014-1933. Note that Tenable Network Security has extracted the...

4.4CVSS8.2AI score0.00492EPSS
Exploits2References3
Ubuntu
Ubuntu
added 2014/04/15 2:17 p.m.56 views

USN-2168-1: Python Imaging Library vulnerabilities

Jakub Wilk discovered that the Python Imaging Library incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files, or gain access to temporary file contents. CVE-2014-1932, CVE-2014-1933...

4.4CVSS8.1AI score0.00492EPSS
Exploits2
Rows per page
Query Builder