[ubuntu/hirsute-proposed] pillow 8.1.1-1 (Accepted)
Matthias Klose
doko at ubuntu.com
Thu Mar 4 11:43:33 UTC 2021
pillow (8.1.1-1) unstable; urgency=high
* New upstream version.
- Use more specific regex chars to prevent ReDoS. CVE-2021-25292.
- Fix OOB Read in TiffDecode.c, and check the tile validity before reading.
CVE-2021-25291.
- Fix negative size read in TiffDecode.c. CVE-2021-25290.
- Fix OOB read in SgiRleDecode.c. CVE-2021-25293.
- Incorrect error code checking in TiffDecode.c. CVE-2021-25289.
Date: 2021-03-04 10:36:55.725220+00:00
Changed-By: Matthias Klose <doko at ubuntu.com>
https://launchpad.net/ubuntu/+source/pillow/8.1.1-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Hirsute-changes
mailing list