Mandriva Linux Security Advisory : python-imaging (MDVSA-2014:163)

Updated python-imaging packages fix security vulnerability : The Python Imaging Library is vulnerable to a denial of service attack in the IcnsImagePlugin CVE-2014-3589. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

CVE-2014-3589

PIL/IcnsImagePlugin.py in Python Imaging Library PIL and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size...

PYSEC-2014-10

PIL/IcnsImagePlugin.py in Python Imaging Library PIL and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size...

CVE-2014-3589

CVE-2014-3589 affects PIL/Pillow’s IcnsImagePlugin.py: Pillow and PIL before 2.3.2 and 2.5.x before 2.5.2 are vulnerable to a denial-of-service via a crafted block size. The root cause is an issue in image handling that allows remote attackers to trigger resource exhaustion. Affected products inc...

CVE-2014-3589

PIL/IcnsImagePlugin.py in Python Imaging Library PIL and Pillow before 2.3.2 and 2.5.x before 2.5.2 allows remote attackers to cause a denial of service via a crafted block size...

Updated python-imaging & python-pillow packages fix CVE-2014-3589

Updated python-imaging and python-pillow packages fix security vulnerabilities: The Python Imaging Library is vulnerable to a denial of service attack in the IcnsImagePlugin CVE-2014-3589...