Format: 1.8
Date: Tue, 07 Jul 2020 13:43:43 -0400
Source: pillow
Binary: python-pil python-pil-dbg python-pil.imagetk python-pil.imagetk-dbg python3-pil python3-pil-dbg python3-pil.imagetk python3-pil.imagetk-dbg python-pil-doc python-imaging
Architecture: ppc64el
Version: 3.1.2-0ubuntu1.4
Distribution: xenial
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-ppc64el-009.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description:
 python-imaging - Python Imaging Library compatibility layer
 python-pil - Python Imaging Library (Pillow fork)
 python-pil-dbg - Python Imaging Library (debug extension)
 python-pil-doc - Examples for the Python Imaging Library
 python-pil.imagetk - Python Imaging Library - ImageTk Module (Pillow fork)
 python-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (debug extension)
 python3-pil - Python Imaging Library (Python3)
 python3-pil-dbg - Python Imaging Library (Python3 debug extension)
 python3-pil.imagetk - Python Imaging Library - ImageTk Module (Python3)
 python3-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (Python3 debug extension)
Changes:
 pillow (3.1.2-0ubuntu1.4) xenial-security; urgency=medium
 .
   * SECURITY UPDATE: multiple out of bounds reads
     - debian/patches/CVE-2020-10177-1.patch: fix issue in
       src/libImaging/FliDecode.c.
     - debian/patches/CVE-2020-10177-2.patch: refactor to macro in
       src/libImaging/FliDecode.c.
     - debian/patches/CVE-2020-10177-3.patch: fix OOB Reads in SS2 Chunk in
       src/libImaging/FliDecode.c.
     - debian/patches/CVE-2020-10177-4.patch: fix OOB in LC packet in
       src/libImaging/FliDecode.c.
     - debian/patches/CVE-2020-10177-5.patch: fix OOB Advance Values in
       src/libImaging/FliDecode.c.
     - debian/patches/CVE-2020-10177-6.patch: fix OOB Read in FLI Copy Chunk
       in src/libImaging/FliDecode.c.
     - debian/patches/CVE-2020-10177-7.patch: fix comments in
       src/libImaging/FliDecode.c.
     - debian/patches/CVE-2020-10177-8.patch: additional FLI check in
       src/libImaging/FliDecode.c.
     - CVE-2020-10177
   * SECURITY UPDATE: out of bounds read with PCX files
     - debian/patches/CVE-2020-10378.patch: fix OOB Access in
       src/libImaging/PcxDecode.c.
     - CVE-2020-10378
   * SECURITY UPDATE: out-of-bounds read via JP2 file
     - debian/patches/CVE-2020-10994-1.patch: fix for OOB Read in
       src/libImaging/Jpeg2KDecode.c.
     - debian/patches/CVE-2020-10994-2.patch: fix typo in
       src/libImaging/Jpeg2KDecode.c.
     - CVE-2020-10994
Checksums-Sha1:
 15b3f87241087fd83b6d3bbc2923156e6e0f0b4d 437768 python-pil-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 6aedc67beb9d784959c72733e52ba717c6d36a69 14164 python-pil.imagetk-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 6e3efa0b39d1a7832004801c34771f666e1f545d 7540 python-pil.imagetk_3.1.2-0ubuntu1.4_ppc64el.deb
 ac012806d3346339f3a26eb5e9ac8ebf195d6323 304630 python-pil_3.1.2-0ubuntu1.4_ppc64el.deb
 11857391b3d6795cd40e5c979cb72463b94a118f 537126 python3-pil-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 9a2cac91379e6701f10f645aea76ac87f4c87138 14226 python3-pil.imagetk-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 b2b9ceef5deae955c9e333c12d3f5d2d76da0698 7636 python3-pil.imagetk_3.1.2-0ubuntu1.4_ppc64el.deb
 ccd25f57bea211c8dcd67bcfa45236d2c11ec8bc 305170 python3-pil_3.1.2-0ubuntu1.4_ppc64el.deb
Checksums-Sha256:
 2732c1d6210646bdcb5392a7ce89117807466571ec04d2a59916cbcd262aed46 437768 python-pil-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 38e1f714803d254136271ceca7c19769c05d2a9fbff94ca123b08bdacab0a9ef 14164 python-pil.imagetk-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 1ce5339846e076152d66d48b1ce9cdfb56acb6f9acf12d4a51be52397a13b977 7540 python-pil.imagetk_3.1.2-0ubuntu1.4_ppc64el.deb
 d68c51300778ca19d5dafd551afdd8688547d3c1fd862f6c8a88d26ff04a9dd4 304630 python-pil_3.1.2-0ubuntu1.4_ppc64el.deb
 dc8e3dacb04f299b897942bc3f6d9a6fdc4dd1d68316420d9cecebb16b168e65 537126 python3-pil-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 5696a8e4a3e31ffcc8352e3773a389d704f4e08b798058c100ebc24c20e9aa7f 14226 python3-pil.imagetk-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 ca94eb18583f435ef210dfcda4ac8143f938b8ce797dc0b833eebfa02c901a3f 7636 python3-pil.imagetk_3.1.2-0ubuntu1.4_ppc64el.deb
 00fd9b4fad17da7d7cc6f75d1df473dfc2e132bcb60fb26677b876a76c8fe196 305170 python3-pil_3.1.2-0ubuntu1.4_ppc64el.deb
Files:
 08923a89a1a8326d80dcc63c7c8c15ce 437768 debug extra python-pil-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 213228f8104ba3fee2f0d9cf9b0d7a73 14164 debug extra python-pil.imagetk-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 988e159bc411a51682ce90d83cefbf42 7540 python optional python-pil.imagetk_3.1.2-0ubuntu1.4_ppc64el.deb
 e6028ec1b27be9cfd03ad8d9db52ca8d 304630 python optional python-pil_3.1.2-0ubuntu1.4_ppc64el.deb
 76bce8f8909dffb78dbc6978bb021e9c 537126 debug extra python3-pil-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 2f72e1287a5ce1a25db9b714ca9e61d7 14226 debug extra python3-pil.imagetk-dbg_3.1.2-0ubuntu1.4_ppc64el.deb
 4b478f09c0b77eafa487b9433e75005e 7636 python optional python3-pil.imagetk_3.1.2-0ubuntu1.4_ppc64el.deb
 70cf242b8de1b041ebec44ea91b1f6df 305170 python optional python3-pil_3.1.2-0ubuntu1.4_ppc64el.deb
Original-Maintainer: Matthias Klose <doko@debian.org>