CVE 2014-9601
Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- CONFIRM: http://pillow.readthed...
- CONFIRM: https://github.com/pyt...
- CONFIRM: https://www.djangoproj...
- FEDORA: FEDORA-2015-0667
- SUSE: openSUSE-SU-2015:0798
- CONFIRM: http://www.oracle.com/...
- BID: 77758
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
73416ba
(Get the code!)