CVE-2016-0775

Опубликовано: 13 апр. 2016

Источник: debian

Описание

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
pillow	fixed	3.1.1-1		package
python-imaging	removed			package
python-imaging	fixed	1.1.7-4+deb7u2	wheezy	package

Примечания

https://github.com/python-pillow/Pillow/commit/bcaaf97f4ff25b3b5b9e8efeda364e17e80858ec (3.1.1)

Связанные уязвимости

CVE-2016-0775

CVSS3: 6.5

ubuntu

почти 10 лет назад

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.

CVE-2016-0775

redhat

около 10 лет назад

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.

CVE-2016-0775

CVSS3: 6.5

nvd

почти 10 лет назад

Buffer overflow in the ImagingFliDecode function in libImaging/FliDecode.c in Pillow before 3.1.1 allows remote attackers to cause a denial of service (crash) via a crafted FLI file.

GHSA-8xjv-v9xq-m5h9

CVSS3: 6.5

github

больше 7 лет назад

Pillow Buffer overflow in ImagingFliDecode

openSUSE-SU-2016:0762-1

suse-cvrf

почти 10 лет назад

Security update for python-Pillow