CVE-2014-9601

Опубликовано: 16 янв. 2015

Источник: ubuntu

Приоритет: low

CVSS2: 5

Описание

Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.

Релиз	Статус	Примечание
devel	not-affected	2.7.0-1
esm-infra-legacy/trusty	released	2.3.0-1ubuntu3.4
esm-infra/xenial	not-affected	2.7.0-1
lucid	DNE
precise	DNE
trusty	released	2.3.0-1ubuntu3.4
trusty/esm	released	2.3.0-1ubuntu3.4
upstream	released	2.7.0
utopic	ignored	end of life
vivid	not-affected	2.7.0-1

Показывать по

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	released	1.1.7-4ubuntu0.12.04.3
trusty	DNE
trusty/esm	DNE
upstream	needs-triage
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
xenial	DNE
yakkety	DNE

Показывать по

Ссылки на источники

5 Medium

CVSS2

Связанные уязвимости

CVE-2014-9601

redhat

около 11 лет назад

Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.

CVE-2014-9601

nvd

около 11 лет назад

Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.

CVE-2014-9601

debian

около 11 лет назад

Pillow before 2.7.0 allows remote attackers to cause a denial of servi ...

GHSA-h5rf-vgqx-wjv2

CVSS3: 7.5

github

больше 3 лет назад

Pillow denial of service via PNG bomb

5 Medium

CVSS2

CVE-2014-9601

Описание

Пакет pillow

Пакет python-imaging

Ссылки на источники

Связанные уязвимости