Описание
ELSA-2024-3005: python-pillow security update (MODERATE)
[5.1.1-20]
- Security fix for CVE-2023-50447 Resolves: RHEL-22240
[5.1.1-19]
- Security fix for CVE-2023-44271 Resolves: RHEL-15460
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
python3-pillow
5.1.1-20.el8
python3-pillow-devel
5.1.1-20.el8
python3-pillow-doc
5.1.1-20.el8
python3-pillow-tk
5.1.1-20.el8
Oracle Linux x86_64
python3-pillow
5.1.1-20.el8
python3-pillow-devel
5.1.1-20.el8
python3-pillow-doc
5.1.1-20.el8
python3-pillow-tk
5.1.1-20.el8
Связанные CVE
Связанные уязвимости
An issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably allocates memory to process a given task, potentially causing a service to crash by having it run out of memory. This occurs for truetype in ImageFont when textlength in an ImageDraw instance operates on a long text argument.
An issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably allocates memory to process a given task, potentially causing a service to crash by having it run out of memory. This occurs for truetype in ImageFont when textlength in an ImageDraw instance operates on a long text argument.
An issue was discovered in Pillow before 10.0.0. It is a Denial of Service that uncontrollably allocates memory to process a given task, potentially causing a service to crash by having it run out of memory. This occurs for truetype in ImageFont when textlength in an ImageDraw instance operates on a long text argument.
An issue was discovered in Pillow before 10.0.0. It is a Denial of Ser ...
