Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Fedora 23 Security Update: Python-Pillow Buffer Overflow Severity Moderate

fedora
Calendar Grey April 10, 2016
Dist Fedora Esm H88
This patch resolves a numerical overflow vulnerability in python-pillow, correcting a buffer overflow flaw located in Jpeg2KEncode.c.
This update fixes an integer overflow in Jpeg2KEncode.c causing a buffer overflow (CVE-2016-3076).

Summary

Python image processing library, fork of the Python Imaging Library (PIL)

This library provides extensive file format support, an efficient

internal representation, and powerful image processing capabilities.

There are four subpackages: tk (tk interface), qt (PIL image wrapper for Qt),

devel (development) and doc (documentation).

Update Information:

This update fixes an integer overflow in Jpeg2KEncode.c causing a buffer overflow (CVE-2016-3076).

Change Log

References

Fedora Update Notification FEDORA-2016-35700c5956 2016-04-10 10:23:15.141497
Name : python-pillow Product : Fedora 23 Version : 3.0.0 Release : 4.fc23 URL : Summary : Python image processing library Description : Python image processing library, fork of the Python Imaging Library (PIL)
This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities.
There are four subpackages: tk (tk interface), qt (PIL image wrapper for Qt), devel (development) and doc (documentation).

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update python-pillow' at the command line. For more information, refer to "Managing Software with yum", available at .

Name: python-pillow
Product: Fedora 23
Version: 3.0.0
Release: 4.fc23
URL:
Summary: Python image processing library

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.