[ubuntu/trusty-proposed] pillow 2.3.0-1ubuntu3 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Mon Mar 31 21:13:44 UTC 2014
pillow (2.3.0-1ubuntu3) trusty; urgency=medium
* SECURITY UPDATE: insecure use of temporary files
- debian/patches/CVE-2014-193x.patch: use tempfile.mkstemp() in
PIL/EpsImagePlugin.py, PIL/Image.py, PIL/IptcImagePlugin.py,
PIL/JpegImagePlugin.py.
- CVE-2014-1932
- CVE-2014-1933
Date: Mon, 31 Mar 2014 10:07:00 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/trusty/+source/pillow/2.3.0-1ubuntu3
-------------- next part --------------
Format: 1.8
Date: Mon, 31 Mar 2014 10:07:00 -0400
Source: pillow
Binary: python-pil python-pil-dbg python-pil.imagetk python-pil.imagetk-dbg python-sane python-sane-dbg python3-pil python3-pil-dbg python3-pil.imagetk python3-pil.imagetk-dbg python3-sane python3-sane-dbg python-pil-doc python-imaging python-imaging-compat python-imaging-dbg python-imaging-tk python-imaging-tk-dbg python-imaging-sane python-imaging-sane-dbg python3-imaging python3-imaging-dbg python3-imaging-tk python3-imaging-tk-dbg python3-imaging-sane python3-imaging-sane-dbg python-imaging-doc
Architecture: source
Version: 2.3.0-1ubuntu3
Distribution: trusty
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
python-imaging - Python Imaging Library compatibility layer
python-imaging-compat - Dummy transitional package
python-imaging-dbg - Dummy transitional package
python-imaging-doc - Dummy transitional package
python-imaging-sane - Dummy transitional package
python-imaging-sane-dbg - Dummy transitional package
python-imaging-tk - Dummy transitional package
python-imaging-tk-dbg - Dummy transitional package
python-pil - Python Imaging Library (Pillow fork)
python-pil-dbg - Python Imaging Library (debug extension)
python-pil-doc - Examples for the Python Imaging Library
python-pil.imagetk - Python Imaging Library - ImageTk Module (Pillow fork)
python-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (debug extension)
python-sane - Python Imaging Library - SANE interface (Pillow fork)
python-sane-dbg - Python Imaging Library - SANE interface (debug extension)
python3-imaging - Dummy transitional package
python3-imaging-dbg - Dummy transitional package
python3-imaging-sane - Dummy transitional package
python3-imaging-sane-dbg - Dummy transitional package
python3-imaging-tk - Dummy transitional package
python3-imaging-tk-dbg - Dummy transitional package
python3-pil - Python Imaging Library (Python3)
python3-pil-dbg - Python Imaging Library (Python3 debug extension)
python3-pil.imagetk - Python Imaging Library - ImageTk Module (Python3)
python3-pil.imagetk-dbg - Python Imaging Library - ImageTk Module (Python3 debug extension)
python3-sane - Python Imaging Library - SANE interface (Python3)
python3-sane-dbg - Python Imaging Library - SANE interface (Python3 debug extension)
Changes:
pillow (2.3.0-1ubuntu3) trusty; urgency=medium
.
* SECURITY UPDATE: insecure use of temporary files
- debian/patches/CVE-2014-193x.patch: use tempfile.mkstemp() in
PIL/EpsImagePlugin.py, PIL/Image.py, PIL/IptcImagePlugin.py,
PIL/JpegImagePlugin.py.
- CVE-2014-1932
- CVE-2014-1933
Checksums-Sha1:
a84e3025176d5c03a56988f004f3ad0536764368 3595 pillow_2.3.0-1ubuntu3.dsc
63d435ac8341429b7f368821135f6a88454d176f 16612 pillow_2.3.0-1ubuntu3.debian.tar.gz
Checksums-Sha256:
eaf8910c6ef7da698484eaf06e7777a497c6b2fcb30580606a35679a8dae0115 3595 pillow_2.3.0-1ubuntu3.dsc
0ac2d7749ce22dd3bf551409a3634d8a641edd9a902c55e823336844f5697a6b 16612 pillow_2.3.0-1ubuntu3.debian.tar.gz
Files:
aeaa0ad4d3974d499aea071f09ac81b6 3595 python optional pillow_2.3.0-1ubuntu3.dsc
0360ac7f7e476cbba691dae39eb9b1ef 16612 python optional pillow_2.3.0-1ubuntu3.debian.tar.gz
Original-Maintainer: Matthias Klose <doko at debian.org>
More information about the Trusty-changes
mailing list