FEDORA-2020-d0737711b6 — security update for python-pillow

stable

python-pillow-6.2.2-3.fc31

FEDORA-2020-d0737711b6 created by smani 5 years ago for Fedora 31

This update fixes CVE-2020-10177, CVE-2020-10994, CVE-2020-10379, CVE-2020-11538 and CVE-2020-10378.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2020-d0737711b6

This update has been submitted for testing by smani.

5 years ago

This update's test gating status has been changed to 'ignored'.

5 years ago

This update's test gating status has been changed to 'waiting'.

5 years ago

This update's test gating status has been changed to 'ignored'.

5 years ago

This update has been pushed to testing.

5 years ago

This update can be pushed to stable now if the maintainer wishes

5 years ago

This update has been submitted for stable by bodhi.

5 years ago

This update has been pushed to stable.

5 years ago

Please log in to add feedback.

Metadata

Type

security

Severity

low

Karma

Signed

Content Type

RPM

Test Gating

ignored

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

7 days

Dates

submitted

5 years ago

in testing

5 years ago

in stable

5 years ago

Builds

python-pillow-6.2.2-3.fc31

BZ#1852815 CVE-2020-11538 python-pillow: number of out-of-bounds reads in the parsing of SGI image files [fedora-31]

BZ#1852821 CVE-2020-10994 python-pillow: multiple out-of-bounds reads via a crafted JP2 file [fedora-31]

BZ#1852826 CVE-2020-10177 python-pillow: multiple out-of-bounds reads in libImaging/FliDecode.c [fedora-31]

BZ#1852833 CVE-2020-10378 python-pillow: an out-of-bounds read in libImaging/PcxDecode.c can occur when reading PCX files [fedora-31]

BZ#1852838 CVE-2020-10379 python-pillow: two buffer overflows in libImaging/TiffDecode.c due to small buffers allocated in ImagingLibTiffDecode() [fedora-31]

python-pillow-6.2.2-3.fc31

Automated Test Results

ignored