openSUSE-SU-2026:20458-1

Опубликовано: 01 апр. 2026

Источник: suse-cvrf

Описание

Security update for python-Pillow

This update for python-Pillow fixes the following issues:

CVE-2026-25990: Fixed an out-of-bounds write when opening a specially crafted PSD image. (bsc#1258125)

Список пакетов

openSUSE Leap 16.0

python313-Pillow-11.3.0-160000.3.1

python313-Pillow-tk-11.3.0-160000.3.1

Ссылки

https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1258125
SUSE Bug 1258125
https://www.suse.com/security/cve/CVE-2026-25990/
SUSE CVE CVE-2026-25990 page

Описание

Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, n out-of-bounds write may be triggered when loading a specially crafted PSD image. This vulnerability is fixed in 12.1.1.

Затронутые продукты

openSUSE Leap 16.0:python313-Pillow-11.3.0-160000.3.1

openSUSE Leap 16.0:python313-Pillow-tk-11.3.0-160000.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2026-25990.html
CVE-2026-25990
https://bugzilla.suse.com/1258125
SUSE Bug 1258125

openSUSE-SU-2026:20458-1

Описание

Список пакетов

openSUSE Leap 16.0

Ссылки

Уязвимость: CVE-2026-25990

Описание

Затронутые продукты

Ссылки