Publishing details

Removed from disk on 2020-12-29.
Removal requested on 2020-12-29.
Published on 2020-02-06
Copied from ubuntu eoan in PPA for Ubuntu Security Proposed by Leonidas S. Barbosa

Changelog

pillow (6.1.0-1ubuntu0.2) eoan-security; urgency=medium

  * SECURITY UPDATE: Exceed memory amount and delay in process image
    - debian/patches/CVE-2019-16865-*.patch: Corrected negative seeks in
      PIL/PsdImagePlugin.py, Added decompression bomb checks in
      PIL/GifImagePlugin.py and PIL/IcoImagePlugin.py, Catch buffer overruns
      in libImaging/PcxDecode.c, libImaging/FliDecode.c and added some tests
      in Tests/images/*.
    - CVE-2019-16865
  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2019-19911.patch:  Raise an error for an invalid
      number of bands in FPX image in PIL/FpxImagePlugin.py and added some
      testes in Test/images/*.
    - CVE-2019-19911
  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2020-5310.patch: Overflow checks for realloc for tiff
      decoding in src/libImaging/TiffDecode.c and added tests in Test/images/*.
    - CVE-2020-5310
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2020-5311.patch: catch SGI buffer overruns
      in src/libImaging/SgiRleDecode.c.
    - CVE-2020-5311
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2020-5312.patch: Catch PCX P mode buffer overrun
      in libImaging/PcxDecode.c and added some tests in Test/images/*.
    - CVE-2020-5312
  * SECURITY UPDATE: Buffer overflow
    - debian/patches/CVE-2020-5313.patch: catch FLI buffer overrun in
      libImaging/FliDecode.c and added some tests in Test/images/*.
    - CVE-2020-5313

 -- <email address hidden> (Leonidas S. Barbosa)  Mon, 03 Feb 2020 14:50:52 -0300

Available diffs

diff from 6.1.0-1ubuntu0.1 to 6.1.0-1ubuntu0.2 (560 bytes)

Builds

Package files

pillow_6.1.0-1ubuntu0.2.debian.tar.xz (273.7 KiB)
pillow_6.1.0-1ubuntu0.2.dsc (2.8 KiB)
pillow_6.1.0.orig.tar.xz (27.8 MiB)
python-pil-dbg_6.1.0-1ubuntu0.2_amd64.deb (572.1 KiB)
python-pil-dbg_6.1.0-1ubuntu0.2_arm64.deb (544.4 KiB)
python-pil-dbg_6.1.0-1ubuntu0.2_armhf.deb (562.3 KiB)
python-pil-dbg_6.1.0-1ubuntu0.2_i386.deb (560.4 KiB)
python-pil-dbg_6.1.0-1ubuntu0.2_ppc64el.deb (554.6 KiB)
python-pil-dbg_6.1.0-1ubuntu0.2_s390x.deb (602.4 KiB)
python-pil-doc_6.1.0-1ubuntu0.2_all.deb (391.2 KiB)
python-pil.imagetk-dbg_6.1.0-1ubuntu0.2_amd64.deb (26.2 KiB)
python-pil.imagetk-dbg_6.1.0-1ubuntu0.2_arm64.deb (26.1 KiB)
python-pil.imagetk-dbg_6.1.0-1ubuntu0.2_armhf.deb (26.2 KiB)
python-pil.imagetk-dbg_6.1.0-1ubuntu0.2_i386.deb (26.0 KiB)
python-pil.imagetk-dbg_6.1.0-1ubuntu0.2_ppc64el.deb (26.6 KiB)
python-pil.imagetk-dbg_6.1.0-1ubuntu0.2_s390x.deb (27.2 KiB)
python-pil.imagetk_6.1.0-1ubuntu0.2_amd64.deb (8.2 KiB)
python-pil.imagetk_6.1.0-1ubuntu0.2_arm64.deb (8.1 KiB)
python-pil.imagetk_6.1.0-1ubuntu0.2_armhf.deb (7.9 KiB)
python-pil.imagetk_6.1.0-1ubuntu0.2_i386.deb (8.2 KiB)
python-pil.imagetk_6.1.0-1ubuntu0.2_ppc64el.deb (8.3 KiB)
python-pil.imagetk_6.1.0-1ubuntu0.2_s390x.deb (8.2 KiB)
python-pil_6.1.0-1ubuntu0.2_amd64.deb (311.7 KiB)
python-pil_6.1.0-1ubuntu0.2_arm64.deb (297.5 KiB)
python-pil_6.1.0-1ubuntu0.2_armhf.deb (290.7 KiB)
python-pil_6.1.0-1ubuntu0.2_i386.deb (308.5 KiB)
python-pil_6.1.0-1ubuntu0.2_ppc64el.deb (304.1 KiB)
python-pil_6.1.0-1ubuntu0.2_s390x.deb (306.1 KiB)
python3-pil-dbg_6.1.0-1ubuntu0.2_amd64.deb (1.2 MiB)
python3-pil-dbg_6.1.0-1ubuntu0.2_arm64.deb (1.1 MiB)
python3-pil-dbg_6.1.0-1ubuntu0.2_armhf.deb (1.1 MiB)
python3-pil-dbg_6.1.0-1ubuntu0.2_i386.deb (1.1 MiB)
python3-pil-dbg_6.1.0-1ubuntu0.2_ppc64el.deb (1.2 MiB)
python3-pil-dbg_6.1.0-1ubuntu0.2_s390x.deb (1.2 MiB)
python3-pil.imagetk-dbg_6.1.0-1ubuntu0.2_amd64.deb (36.7 KiB)
python3-pil.imagetk-dbg_6.1.0-1ubuntu0.2_arm64.deb (36.7 KiB)
python3-pil.imagetk-dbg_6.1.0-1ubuntu0.2_armhf.deb (36.4 KiB)
python3-pil.imagetk-dbg_6.1.0-1ubuntu0.2_i386.deb (35.2 KiB)
python3-pil.imagetk-dbg_6.1.0-1ubuntu0.2_ppc64el.deb (37.9 KiB)
python3-pil.imagetk-dbg_6.1.0-1ubuntu0.2_s390x.deb (36.5 KiB)
python3-pil.imagetk_6.1.0-1ubuntu0.2_amd64.deb (8.5 KiB)
python3-pil.imagetk_6.1.0-1ubuntu0.2_arm64.deb (8.5 KiB)
python3-pil.imagetk_6.1.0-1ubuntu0.2_armhf.deb (8.0 KiB)
python3-pil.imagetk_6.1.0-1ubuntu0.2_i386.deb (8.8 KiB)
python3-pil.imagetk_6.1.0-1ubuntu0.2_ppc64el.deb (8.9 KiB)
python3-pil.imagetk_6.1.0-1ubuntu0.2_s390x.deb (8.3 KiB)
python3-pil_6.1.0-1ubuntu0.2_amd64.deb (340.5 KiB)
python3-pil_6.1.0-1ubuntu0.2_arm64.deb (327.7 KiB)
python3-pil_6.1.0-1ubuntu0.2_armhf.deb (315.4 KiB)
python3-pil_6.1.0-1ubuntu0.2_i386.deb (344.1 KiB)
python3-pil_6.1.0-1ubuntu0.2_ppc64el.deb (359.0 KiB)
python3-pil_6.1.0-1ubuntu0.2_s390x.deb (334.4 KiB)