Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2020-1087)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.5.0 : python-pillow (EulerOS-SA-2020-1087)

According to the version of the python-pillow package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format...

CVE-2020-5312

A flaw was discovered in python-pillow does where it does not properly restrict operations within the bounds of a memory buffer when decoding PCX images. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the...

CVE-2020-5313

An out-of-bounds read was discovered in python-pillow in the way it decodes FLI images. An application that uses python-pillow to load untrusted images may be vulnerable to this flaw, which can allow an attacker to read the memory of the application they should be not allowed to read...

CVE-2020-5311

An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system...

Fedora Update for python-pillow FEDORA-2019-e7c83bdf19

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

EulerOS 2.0 SP8 : python-pillow (EulerOS-SA-2020-1026)

According to the version of the python-pillow packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very lar...

EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2019-2701)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The 1 loaddjpeg function in JpegImagePlugin.py, 2 Ghostscript function in EpsImagePlugin.py, 3 load function in IptcImagePlugin.py, and 4...

EulerOS 2.0 SP3 : python-pillow (EulerOS-SA-2019-2654)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denia...

Fedora Update for python-pillow FEDORA-2019-19a161d540

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 30 : python-pillow (2019-19a161d540)

This update backports fixes for CVE-2019-16865. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...

EulerOS 2.0 SP2 : python-pillow (EulerOS-SA-2019-2437)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size...

Fedora 31 : python-pillow (2019-e7c83bdf19)

This update backports fixes for CVE-2019-16865. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C...

CVE-2019-16865

A flaw was discovered in the way the python-pillow may allocate a large amount of memory or require a long time while processing specially crafted image files, possibly causing a denial of service. Applications that use the library to process untrusted files may be vulnerable to this flaw...

EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2019-2226)

According to the versions of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow before 3.1.1 and Python Imaging Library PIL 1.1.7 and earlier...

SUSE-SU-2019:2334-1 Security update for python-Pillow

This update for python-Pillow fixes the following issues: - CVE-2016-2533: Fixed a buffer overflow in the PCD decoding bsc967970. - CVE-2016-4009: Fixed an interger overflow in ImagingResampleHorizontal bsc975500...

EulerOS Virtualization for ARM 64 3.0.2.0 : python-pillow (EulerOS-SA-2019-1709)

According to the version of the python-pillow package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - A vulnerability was found in python-pillow. A crafted image file with negative dimensions could cause a buffer to b...

SUSE-SU-2019:1772-1 Security update for python-Pillow

This update for python-Pillow fixes the following issues: Security issue fixed: - CVE-2016-9189: Fixed a integer overflows leading to memory disclosure in PyImagingMapBuffer bsc1008845...

EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2019-1687)

According to the version of the python-pillow package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A vulnerability was found in python-pillow. A crafted image file with negative dimensions could cause a buffer to be under-allocated, leading...

SUSE-SU-2019:1321-1 Security update for python-Pillow

This update for python-Pillow fixes the following issues: Security issues fixed: - CVE-2016-9189: Fixed a integer overflows leading to memory disclosure in PyImagingMapBuffer bsc1008845. - CVE-2016-9190: Fixed a code execution vulnerability using a crafted image file in ImagingNew bsc1008846. -...