You are here
Home > Preporuke > Sigurnosni nedostatak biblioteke python pillow

Sigurnosni nedostatak biblioteke python pillow

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2015-01-14 06:27:45

Name : python-pillow
Product : Fedora 21
Version : 2.6.1
Release : 2.fc21
Summary : Python image processing library
Description :
Python image processing library, fork of the Python Imaging Library (PIL)

This library provides extensive file format support, an efficient
internal representation, and powerful image processing capabilities.

There are five subpackages: tk (tk interface), qt (PIL image wrapper for Qt),
sane (scanning devices interface), devel (development) and doc (documentation).

Update Information:

This update fixes a potential denial-of-service during PNG decompression.

* Mon Jan 12 2015 Sandro Mani <> – 2.6.1-2
– Add python-pillow_PNG-decompression-DOS.patch (fixes #1179354)
– Fix headers installation directory
– Fix sane pycache in main package

[ 1 ] Bug #1179354 – CVE-2014-9601 python-pillow: potential denial-of-service during PNG decompression

This update can be installed with the “yum” update program. Use
su -c ‘yum update python-pillow’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorMarko Stanec
Cert idNCERT-REF-2015-01-0018-ADV
More in Preporuke
Ranjivosti jezgre operacijskog sustava

Otkirveno je više nekoliko ranjivosti u jezgri operacijskog sustava RHEL 6.5 Extended Update Support. Ranjivosti su posljedica grešaka u načinu...