FEDORA-EPEL-2021-32d4f4a583 created by orion 10 months ago for Fedora EPEL 7
stable

Backport CVE fixes for CVE-2020-35655, CVE-2020-35654, CVE-2021-25289 (bz#1934684), CVE-2021-25290 (bz#1934689), CVE-2021-25291 (bz#1934696), CVE-2020-35655, CVE-2021-25293 (bz#1934709), CVE-2021-25292 (bz#1934703), CVE-2021-27921 (bz#1935387), CVE-2021-27922 (bz#1935400), CVE-2021-27923 (bz#1935404)

This update has been submitted for testing by orion.

10 months ago

This update's test gating status has been changed to 'ignored'.

10 months ago

This update's test gating status has been changed to 'waiting'.

10 months ago

This update's test gating status has been changed to 'ignored'.

10 months ago

This update has been pushed to testing.

10 months ago

This update can be pushed to stable now if the maintainer wishes

10 months ago

This update has been submitted for stable by bodhi.

10 months ago

This update has been pushed to stable.

10 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
10 months ago
in testing
10 months ago
in stable
10 months ago
BZ#1934684 CVE-2021-25289 python3-pillow: python-pillow: insufficent fix for CVE-2020-35654 due to incorrect error checking in TiffDecode.c [epel-7]
0
0
BZ#1934689 CVE-2021-25290 python3-pillow: python-pillow: negative-offset memcpy with an invalid size in TiffDecode.c [epel-7]
0
0
BZ#1934696 CVE-2021-25291 python3-pillow: python-pillow: out-of-bounds read in TiffReadRGBATile in TiffDecode.c [epel-7]
0
0
BZ#1934703 CVE-2021-25292 python3-pillow: python-pillow: backtracking regex in PDF parser could be used as a DOS attack [epel-7]
0
0
BZ#1934709 CVE-2021-25293 python3-pillow: python-pillow: out-of-bounds read in SGIRleDecode.c [epel-7]
0
0
BZ#1935387 CVE-2021-27921 python3-pillow: python-pillow: reported size of a contained image is not properly checked for a BLP container [epel-7]
0
0
BZ#1935400 CVE-2021-27922 python3-pillow: python-pillow: reported size of a contained image is not properly checked for an ICNS container [epel-7]
0
0
BZ#1935404 CVE-2021-27923 python3-pillow: python-pillow: reported size of a contained image is not properly checked for an ICO container [epel-7]
0
0

Automated Test Results