ELSA-2024-4227

Опубликовано: 02 июл. 2024

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2024-4227: python-pillow security update (MODERATE)

[5.1.1-21]

Security fix for CVE-2024-28219 Resolves: RHEL-31071

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

python3-pillow

5.1.1-21.el8_10

python3-pillow-devel

5.1.1-21.el8_10

python3-pillow-doc

5.1.1-21.el8_10

python3-pillow-tk

5.1.1-21.el8_10

Oracle Linux x86_64

python3-pillow

5.1.1-21.el8_10

python3-pillow-devel

5.1.1-21.el8_10

python3-pillow-doc

5.1.1-21.el8_10

python3-pillow-tk

5.1.1-21.el8_10

Связанные CVE

CVE-2024-28219

Ссылки на источники

Связанные уязвимости

CVE-2024-28219

CVSS3: 6.7

ubuntu

около 1 года назад

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.

CVE-2024-28219

CVSS3: 6.5

redhat

около 1 года назад

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.

CVE-2024-28219

CVSS3: 6.7

nvd

около 1 года назад

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists because strcpy is used instead of strncpy.

CVE-2024-28219

CVSS3: 6.7

debian

около 1 года назад

In _imagingcms.c in Pillow before 10.3.0, a buffer overflow exists bec ...

SUSE-SU-2024:1258-1

suse-cvrf

около 1 года назад

Security update for python-Pillow