Debian: Security Advisory (DSA-3009-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : python-imaging (openSUSE-SU-2014:0591-1)

A temporary file race condition has been fixed in python-imaging when converting images CVE-2014-1932, CVE-2014-1933. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-326. The tex...

SuSE 11.3 Security Update : python-imaging (SAT Patch Number 9153)

This python-imaging update fixes the following two security issues : - Fixed insecure temporary file creation and handling CVE-2014-1932 / CVE-2014-1933. bnc863541 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE ...

Mandriva Linux Security Advisory : python-imaging (MDVSA-2014:082)

Updated python-imaging packages fix security vulnerabilities : Jakub Wilk discovered that temporary files were insecurely created via mktemp in the IptcImagePlugin.py, Image.py, JpegImagePlugin.py, and EpsImagePlugin.py files of Python Imaging Library. A local attacker could use this flaw to...

[USN-2168-1] Python Imaging Library vulnerabilities

========================================================================== Ubuntu Security Notice USN-2168-1 April 15, 2014 python-imaging vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its...

Python Imaging Library security vulnerabilities

Symbolic links vulnerabilities...

DEBIAN-CVE-2014-3007

Python Image Library PIL 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors related to CVE-2014-1932, possibly JpegImagePlugin.py...

UBUNTU-CVE-2014-3007

Python Image Library PIL 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors related to CVE-2014-1932, possibly JpegImagePlugin.py...

Ubuntu Update for python-imaging USN-2168-1

Check for the Version of python-imaging OpenVAS Vulnerability Test $Id: gbubuntuUSN21681.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for python-imaging USN-2168-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is...

Ubuntu: Security Advisory (USN-2168-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2014-1933

The 1 JpegImagePlugin.py and 2 EpsImagePlugin.py scripts in Python Image Library PIL 1.1.7 and earlier and Pillow before 2.3.1 uses the names of temporary files on the command line, which makes it easier for local users to conduct symlink attacks by listing the processes...

PYSEC-2014-22

The 1 loaddjpeg function in JpegImagePlugin.py, 2 Ghostscript function in EpsImagePlugin.py, 3 load function in IptcImagePlugin.py, and 4 copy function in Image.py in Python Image Library PIL 1.1.7 and earlier and Pillow before 2.3.1 do not properly create temporary files, which allow local users...

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : python-imaging vulnerabilities (USN-2168-1)

Jakub Wilk discovered that the Python Imaging Library incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files, or gain access to temporary file contents. CVE-2014-1932, CVE-2014-1933. Note that Tenable Network Security has extracted the...

USN-2168-1: Python Imaging Library vulnerabilities

Jakub Wilk discovered that the Python Imaging Library incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files, or gain access to temporary file contents. CVE-2014-1932, CVE-2014-1933...

Updated python-imaging package fixes insecure use of temporary files

Updated python-imaging packages fix security vulnerabilities: Jakub Wilk discovered that temporary files were insecurely created via mktemp in the IptcImagePlugin.py, Image.py, JpegImagePlugin.py, and EpsImagePlugin.py files of Python Imaging Library. A local attacker could use this flaw to perfo...

MGASA-2014-0158 Updated python-imaging package fixes insecure use of temporary files

Updated python-imaging packages fix security vulnerabilities: Jakub Wilk discovered that temporary files were insecurely created via mktemp in the IptcImagePlugin.py, Image.py, JpegImagePlugin.py, and EpsImagePlugin.py files of Python Imaging Library. A local attacker could use this flaw to perfo...

MDKA-2007:099 : python-imaging

The python-imaging package didn't include the Tk extension, this update fixes the package build and readds the imagingtk module. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network...

Mandriva Update for python-imaging MDKA-2007:099 (python-imaging)

Check for the Version of python-imaging OpenVAS Vulnerability Test Mandriva Update for python-imaging MDKA-2007:099 python-imaging Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

Mandriva Update for python-imaging MDKA-2007:099 (python-imaging)

Check for the Version of python-imaging OpenVAS Vulnerability Test Mandriva Update for python-imaging MDKA-2007:099 python-imaging Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...