FEDORA-EPEL-2021-32d4f4a583 created by orion 7 months ago for Fedora EPEL 7
stable

Backport CVE fixes for CVE-2020-35655, CVE-2020-35654, CVE-2021-25289 (bz#1934684), CVE-2021-25290 (bz#1934689), CVE-2021-25291 (bz#1934696), CVE-2020-35655, CVE-2021-25293 (bz#1934709), CVE-2021-25292 (bz#1934703), CVE-2021-27921 (bz#1935387), CVE-2021-27922 (bz#1935400), CVE-2021-27923 (bz#1935404)

This update has been submitted for testing by orion.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update's test gating status has been changed to 'waiting'.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update has been pushed to testing.

7 months ago

This update can be pushed to stable now if the maintainer wishes

7 months ago

This update has been submitted for stable by bodhi.

7 months ago

This update has been pushed to stable.

7 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
14 days
Dates
submitted
7 months ago
in testing
7 months ago
in stable
7 months ago
BZ#1934684 CVE-2021-25289 python3-pillow: python-pillow: insufficent fix for CVE-2020-35654 due to incorrect error checking in TiffDecode.c [epel-7]
0
0
BZ#1934689 CVE-2021-25290 python3-pillow: python-pillow: negative-offset memcpy with an invalid size in TiffDecode.c [epel-7]
0
0
BZ#1934696 CVE-2021-25291 python3-pillow: python-pillow: out-of-bounds read in TiffReadRGBATile in TiffDecode.c [epel-7]
0
0
BZ#1934703 CVE-2021-25292 python3-pillow: python-pillow: backtracking regex in PDF parser could be used as a DOS attack [epel-7]
0
0
BZ#1934709 CVE-2021-25293 python3-pillow: python-pillow: out-of-bounds read in SGIRleDecode.c [epel-7]
0
0
BZ#1935387 CVE-2021-27921 python3-pillow: python-pillow: reported size of a contained image is not properly checked for a BLP container [epel-7]
0
0
BZ#1935400 CVE-2021-27922 python3-pillow: python-pillow: reported size of a contained image is not properly checked for an ICNS container [epel-7]
0
0
BZ#1935404 CVE-2021-27923 python3-pillow: python-pillow: reported size of a contained image is not properly checked for an ICO container [epel-7]
0
0

Automated Test Results