Zwei Probleme in Pillow
ID: | FEDORA-2016-4d00dca15a |
Distribution: | Fedora |
Plattformen: | Fedora 22 |
Datum: | So, 21. Februar 2016, 10:57 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0775
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0740 |
Applikationen: | Pillow |
Originalnachricht |
|
Name : python-pillow Product : Fedora 22 Version : 2.8.2 Release : 4.fc22 URL : http://python-pillow.github.io/ Summary : Python image processing library Description : Python image processing library, fork of the Python Imaging Library (PIL) This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk (tk interface), qt (PIL image wrapper for Qt), devel (development) and doc (documentation). -------------------------------------------------------------------------------- Update Information: This update fixes the python3-pillow package description. ---- This update fixes for security vulnerabilities, including CVE-2016-0775, CVE-2016-0740. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1305004 - python-pillow: Buffer overflow in PcdDecode.c https://bugzilla.redhat.com/show_bug.cgi?id=1305004 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update python-pillow' at the command line. For more information, refer to "Managing Software with yum", available at https://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce |