Summary: | <dev-python/pillow-6.2.0: reading specially crafted image files leads to allocation of large amounts of memory (CVE-2019-16865) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | mgorny, python |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | https://bugs.gentoo.org/show_bug.cgi?id=706202 | ||
Whiteboard: | B3 [noglsa cve] | ||
Package list: |
dev-python/pillow-6.2.1
|
Runtime testing required: | --- |
Description
GLSAMaker/CVETool Bot
2019-12-02 22:49:01 UTC
Keywords for dev-python/pillow: | | u | | a a a p s r | n | | l m r i p h m s p i m | e u s | r | p d a m a p c x p 6 3 a s i | a s l | e | h 6 r 6 6 p 6 8 p 8 9 s r c p | p e o | p | a 4 m 4 4 c 4 6 a k 0 h c v s | i d t | o ------------+-------------------------------+-------+------- 3.4.2-r1 | + + + ~ + + + + + o o o + o o | 6 o 0 | gentoo 5.4.1 | + + + ~ o + + + ~ o o o o o o | 7 o | gentoo 6.0.0 | ~ + + + o ~ ~ ~ ~ o o o o o o | 7 o | gentoo 6.1.0 | ~ ~ ~ ~ o ~ ~ ~ ~ o o o ~ o o | 7 # | gentoo 6.2.0 | ~ ~ ~ ~ o ~ ~ ~ ~ o o o ~ o o | 7 # | gentoo [I]6.2.1 | ~ ~ ~ ~ o ~ ~ ~ ~ o o o ~ o o | 7 o | gentoo amd64 stable x86 stable ppc64 stable arm64 stable ppc stable hppa/sparc stable arm stable Tree is clean. Resetting sanity check; keywords are not fully specified and arches are not CC-ed. GLSA Vote: No Thank you all for you work. Closing as [noglsa]. |