svn commit: r427816 - head/security/vuxml
Mark Felder
feld at FreeBSD.org
Sun Dec 4 23:03:29 UTC 2016
Author: feld
Date: Sun Dec 4 23:03:27 2016
New Revision: 427816
URL: https://svnweb.freebsd.org/changeset/ports/427816
Log:
Document py-pillow vulnerabilities
PR: 214410
Security: CVE-2016-9189
Security: CVE-2016-9190
Modified:
head/security/vuxml/vuln.xml
Modified: head/security/vuxml/vuln.xml
==============================================================================
--- head/security/vuxml/vuln.xml Sun Dec 4 22:52:26 2016 (r427815)
+++ head/security/vuxml/vuln.xml Sun Dec 4 23:03:27 2016 (r427816)
@@ -58,6 +58,44 @@ Notes:
* Do not forget port variants (linux-f10-libxml2, libxml2, etc.)
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="bc4898d5-a794-11e6-b2d3-60a44ce6887b">
+ <topic>Pillow -- multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>py27-pillow</name>
+ <name>py33-pillow</name>
+ <name>py34-pillow</name>
+ <name>py35-pillow</name>
+ <range><lt>3.3.2</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Pillow reports:</p>
+ <blockquote cite="http://pillow.readthedocs.io/en/3.4.x/releasenotes/3.3.2.html">
+ <p>Pillow prior to 3.3.2 may experience integer overflow
+ errors in map.c when reading specially crafted image files. This may
+ lead to memory disclosure or corruption.</p>
+ <p>Pillow prior to 3.3.2 and PIL 1.1.7 (at least) do not check
+ for negative image sizes in ImagingNew in Storage.c. A negative image
+ size can lead to a smaller allocation than expected, leading to arbi
+ trary writes.</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>http://pillow.readthedocs.io/en/3.4.x/releasenotes/3.3.2.html</url>
+ <url>https://github.com/python-pillow/Pillow/issues/2105</url>
+ <cvename>CVE-2016-9189</cvename>
+ <cvename>CVE-2016-9190</cvename>
+ <freebsdpr>ports/214410</freebsdpr>
+ </references>
+ <dates>
+ <discovery>2016-09-06</discovery>
+ <entry>2016-12-04</entry>
+ </dates>
+ </vuln>
+
<vuln vid="19d35b0f-ba73-11e6-b1cf-14dae9d210b8">
<topic>ImageMagick -- heap overflow vulnerability</topic>
<affects>
More information about the svn-ports-head
mailing list