928391 – (CVE-2024-28219) <dev-python/pillow-10.3.0: buffer overflow in _imagingcms.c

Bug 928391 (CVE-2024-28219) - <dev-python/pillow-10.3.0: buffer overflow in _imagingcms.c

Summary: <dev-python/pillow-10.3.0: buffer overflow in _imagingcms.c

Status:	CONFIRMED

Alias:	CVE-2024-28219

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal
Assignee:	Gentoo Security

URL:	https://pillow.readthedocs.io/en/stab...
Whiteboard:	A2 [glsa+ cleanup]
Keywords:

Depends on:	928390
Blocks:
	Show dependency tree

Reported:	2024-04-01 15:37 UTC by Michał Górny
Modified:	2024-11-17 09:48 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Michał Górny archtester

2024-04-01 15:37:41 UTC

CVE-2024-28219: Fix buffer overflow in _imagingcms.c
In _imagingcms.c, two strcpy calls were able to copy too much data into fixed length strings. This has been fixed by using strncpy instead.

Comment 1 Larry the Git Cow gentoo-dev

2024-11-17 09:47:36 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=c810744faec38fb00298e4d24f97d9a9f8bce2a9

commit c810744faec38fb00298e4d24f97d9a9f8bce2a9
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2024-11-17 09:47:11 +0000
Commit:     Hans de Graaff <graaff@gentoo.org>
CommitDate: 2024-11-17 09:47:34 +0000

    [ GLSA 202411-07 ] Pillow: Arbitrary code execution
    
    Bug: https://bugs.gentoo.org/928391
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: Hans de Graaff <graaff@gentoo.org>

 glsa-202411-07.xml | 42 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 42 insertions(+)